Oval Definition:	oval:com.ubuntu.bionic:def:20177788000
Revision Date: 2018-06-11 Version: 1 Title: CVE-2017-7788 on Ubuntu 18.04 LTS (bionic) - medium. Description: When an "iframe" has a "sandbox" attribute and its content is specified using "srcdoc", that content does not inherit the containing page's Content Security Policy (CSP) as it should unless the sandbox attribute included "allow-same-origin". This vulnerability affects Firefox < 55. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-7788 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information The 'firefox' package in bionic was vulnerable but has been fixed (note: '55.0.2+build1-0ubuntu4'). OR The vulnerability of the 'mozjs38' package in bionic is not known (status: 'needs-triage'). It is pending evaluation.
BACK