Oval Definition:	oval:com.ubuntu.bionic:def:201813982000
Revision Date: 2018-09-18 Version: 1 Title: CVE-2018-13982 on Ubuntu 18.04 LTS (bionic) - medium. Description: Smarty_Security::isTrustedResourceDir() in Smarty before 3.1.33 is prone to a path traversal vulnerability due to insufficient template code sanitization. This allows attackers controlling the executed template code to bypass the trusted directory security restriction and read arbitrary files. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-13982 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND The vulnerability of the 'smarty3' package in bionic is not known (status: 'needs-triage'). It is pending evaluation.
BACK