Oval Definition:	oval:com.ubuntu.bionic:def:20151832000
Revision Date: 2016-10-03 Version: 1 Title: CVE-2015-1832 on Ubuntu 18.04 LTS (bionic) - medium. Description: XML external entity (XXE) vulnerability in the SqlXmlUtil code in Apache Derby before 10.12.1.1, when a Java Security Manager is not in place, allows context-dependent attackers to read arbitrary files or cause a denial of service (resource consumption) via vectors involving XmlVTI and the XML datatype. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-1832 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND NOT While related to the CVE in some way, the 'derby' package in bionic is not affected (note: '10.14.1.0-1ubuntu1').
BACK