Oval Definition:	oval:com.ubuntu.artful:def:20162039000
Revision Date: 2016-02-19 Version: 1 Title: CVE-2016-2039 on Ubuntu 17.10 (artful) - medium. Description: libraries/session.inc.php in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.15.3, and 4.5.x before 4.5.4 does not properly generate CSRF token values, which allows remote attackers to bypass intended access restrictions by predicting a value. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-2039 Platform(s): Ubuntu 17.10 Product(s): Definition Synopsis Ubuntu 17.10 (artful) is installed. AND NOT While related to the CVE in some way, the 'phpmyadmin' package in artful is not affected (note: '4:4.5.4-1').
BACK