Oval Definition:	oval:com.ubuntu.bionic:def:20181324000
Revision Date: 2018-03-16 Version: 1 Title: CVE-2018-1324 on Ubuntu 18.04 LTS (bionic) - low. Description: A specially crafted ZIP archive can be used to cause an infinite loop inside of Apache Commons Compress' extra field parser used by the ZipFile and ZipArchiveInputStream classes in versions 1.11 to 1.15. This can be used to mount a denial of service attack against services that use Compress' zip package. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-1324 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND The vulnerability of the 'libcommons-compress-java' package in bionic is not known (status: 'needs-triage'). It is pending evaluation.
BACK