OVAL Reference oval:com.ubuntu.bionic:def:201607060000000

Oval Definition:

oval:com.ubuntu.bionic:def:201607060000000

Revision Date:	2016-02-25	Version:	1
Title:	CVE-2016-0706 on Ubuntu 18.04 LTS (bionic) - medium.
Description:	Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 does not place org.apache.catalina.manager.StatusManagerServlet on the org/apache/catalina/core/RestrictedServlets.properties list, which allows remote authenticated users to bypass intended SecurityManager restrictions and read arbitrary HTTP requests, and consequently discover session ID values, via a crafted web application.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-0706
Platform(s):	Ubuntu 18.04 LTS	Product(s):
Definition Synopsis
Ubuntu 18.04 LTS (bionic) is installed. AND Package Information tomcat7 package in bionic, is related to the CVE in some way and has been fixed (note: '7.0.68-1'). OR tomcat8 package in bionic, is related to the CVE in some way and has been fixed (note: '8.0.32-1ubuntu1').