OVAL Reference oval:com.ubuntu.bionic:def:201810001680000000

Oval Definition:

oval:com.ubuntu.bionic:def:201810001680000000

Revision Date:	2018-05-08	Version:	1
Title:	CVE-2018-1000168 on Ubuntu 18.04 LTS (bionic) - medium.
Description:	nghttp2 version >= 1.10.0 and nghttp2 <= v1.31.0 contains an Improper Input Validation CWE-20 vulnerability in ALTSVC frame handling that can result in segmentation fault leading to denial of service. This attack appears to be exploitable via network client. This vulnerability appears to have been fixed in >= 1.31.1.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-1000168
Platform(s):	Ubuntu 18.04 LTS	Product(s):
Definition Synopsis
Ubuntu 18.04 LTS (bionic) is installed. AND nghttp2 package in bionic was vulnerable but has been fixed (note: '1.30.0-1ubuntu1').