Oval Definition:	oval:com.ubuntu.artful:def:20152931000
Revision Date: 2015-04-13 Version: 1 Title: CVE-2015-2931 on Ubuntu 17.10 (artful) - medium. Description: Incomplete blacklist vulnerability in includes/upload/UploadBase.php in MediaWiki before 1.19.24, 1.2x before 1.23.9, and 1.24.x before 1.24.2 allows remote attackers to inject arbitrary web script or HTML via an application/xml MIME type for a nested SVG with a data: URI. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-2931 Platform(s): Ubuntu 17.10 Product(s): Definition Synopsis Ubuntu 17.10 (artful) is installed. AND The 'mediawiki' package in artful is affected and needs fixing.
BACK