OVAL Reference oval:com.ubuntu.bionic:def:201811784000

Oval Definition:

oval:com.ubuntu.bionic:def:201811784000

Revision Date:	2018-10-04	Version:	1
Title:	CVE-2018-11784 on Ubuntu 18.04 LTS (bionic) - medium.
Description:	When the default servlet in Apache Tomcat versions 9.0.0.M1 to 9.0.11, 8.5.0 to 8.5.33 and 7.0.23 to 7.0.90 returned a redirect to a directory (e.g. redirecting to '/foo/' when the user requested '/foo') a specially crafted URL could be used to cause the redirect to be generated to any URI of the attackers choice.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-11784
Platform(s):	Ubuntu 18.04 LTS	Product(s):
Definition Synopsis
Ubuntu 18.04 LTS (bionic) is installed. AND Package Information The 'tomcat7' package in bionic is affected and needs fixing. OR The 'tomcat8' package in bionic was vulnerable but has been fixed (note: '8.5.39-1ubuntu1~18.04.1').