Oval Definition:	oval:com.ubuntu.bionic:def:201712616000
Revision Date: 2017-09-19 Version: 1 Title: CVE-2017-12616 on Ubuntu 18.04 LTS (bionic) - medium. Description: When using a VirtualDirContext with Apache Tomcat 7.0.0 to 7.0.80 it was possible to bypass security constraints and/or view the source code of JSPs for resources served by the VirtualDirContext using a specially crafted request. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-12616 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information The 'tomcat7' package in bionic is affected and needs fixing. OR NOT While related to the CVE in some way, the 'tomcat8' package in bionic is not affected (note: '8.5.30-1ubuntu1').
BACK