Oval Definition:	oval:com.ubuntu.bionic:def:201621780000000
Revision Date: 2016-06-20 Version: 1 Title: CVE-2016-2178 on Ubuntu 18.04 LTS (bionic) - low. Description: The dsa_sign_setup function in crypto/dsa/dsa_ossl.c in OpenSSL through 1.0.2h does not properly ensure the use of constant-time operations, which makes it easier for local users to discover a DSA private key via a timing side-channel attack. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-2178 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND openssl package in bionic was vulnerable but has been fixed (note: '1.0.2g-1ubuntu9').
BACK