Oval Definition:	oval:com.ubuntu.xenial:def:20165399000
Revision Date: 2017-04-21 Version: 1 Title: CVE-2016-5399 on Ubuntu 16.04 LTS (xenial) - medium. Description: The bzread function in ext/bz2/bz2.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted bz2 archive. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-5399 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND The 'php7.0' package in xenial was vulnerable but has been fixed (note: '7.0.8-0ubuntu0.16.04.2').
BACK