OVAL Reference oval:com.ubuntu.artful:def:201811407000

Oval Definition:

oval:com.ubuntu.artful:def:201811407000

Revision Date:	2018-06-13	Version:	1
Title:	CVE-2018-11407 on Ubuntu 17.10 (artful) - medium.
Description:	An issue was discovered in the Ldap component in Symfony 2.8.x before 2.8.37, 3.3.x before 3.3.17, 3.4.x before 3.4.7, and 4.0.x before 4.0.7. It allows remote attackers to bypass authentication by logging in with a "null" password and valid username, which triggers an unauthenticated bind. NOTE: this issue exists because of an incomplete fix for CVE-2016-2403.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-11407
Platform(s):	Ubuntu 17.10	Product(s):
Definition Synopsis
Ubuntu 17.10 (artful) is installed. AND The vulnerability of the 'symfony' package in artful is not known (status: 'needs-triage'). It is pending evaluation.