Oval Definition:
oval:com.ubuntu.artful:def:20171000246000
Revision Date
:
2017-11-16
Version
:
1
Title
:
CVE-2017-1000246 on Ubuntu 17.10 (artful) - negligible.
Description
:
Python package pysaml2 version 4.4.0 and earlier reuses the initialization vector across encryptions in the IDP server, resulting in weak encryption of data.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2017-1000246
Platform(s)
:
Ubuntu 17.10
Product(s)
:
Definition Synopsis
Ubuntu 17.10 (artful) is installed.
AND
The vulnerability of the 'python-pysaml2' package in artful is not known (status: 'needs-triage'). It is pending evaluation.
BACK