Oval Definition:oval:com.ubuntu.bionic:def:2018123640000000
Revision Date:2018-10-18Version:1
Title:CVE-2018-12364 on Ubuntu 18.04 LTS (bionic) - medium.
Description:NPAPI plugins, such as Adobe Flash, can send non-simple cross-origin requests, bypassing CORS by making a same-origin POST that does a 307 redirect to the target site. This allows for a malicious site to engage in cross-site request forgery (CSRF) attacks. This vulnerability affects Thunderbird < 60, Thunderbird < 52.9, Firefox ESR < 60.1, Firefox ESR < 52.9, and Firefox < 61.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-12364
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND Package Information
  • firefox package in bionic was vulnerable but has been fixed (note: '61.0+build3-0ubuntu0.18.04.1').
  • OR thunderbird package in bionic was vulnerable but has been fixed (note: '1:52.9.1+build3-0ubuntu0.18.04.1').
    • BACK