Oval Definition:
oval:com.ubuntu.artful:def:20155475000
Revision Date
:
2015-08-14
Version
:
1
Title
:
CVE-2015-5475 on Ubuntu 17.10 (artful) - medium.
Description
:
Multiple cross-site scripting (XSS) vulnerabilities in Request Tracker (RT) 4.x before 4.2.12 allow remote attackers to inject arbitrary web script or HTML via vectors related to the (1) user and (2) group rights management pages.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2015-5475
Platform(s)
:
Ubuntu 17.10
Product(s)
:
Definition Synopsis
Ubuntu 17.10 (artful) is installed.
AND
NOT
While related to the CVE in some way, the 'request-tracker4' package in artful is not affected (note: '4.2.11-2').
BACK