Oval Definition:	oval:com.ubuntu.bionic:def:201756450000000
Revision Date: 2017-04-17 Version: 1 Title: CVE-2017-5645 on Ubuntu 18.04 LTS (bionic) - medium. Description: In Apache Log4j 2.x before 2.8.2, when using the TCP socket server or UDP socket server to receive serialized log events from another application, a specially crafted binary payload can be sent that, when deserialized, can execute arbitrary code. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-5645 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND apache-log4j2 package in bionic, is related to the CVE in some way and has been fixed (note: '2.10.0-2').
BACK