Oval Definition:	oval:com.ubuntu.bionic:def:201816875000
Revision Date: 2018-12-14 Version: 1 Title: CVE-2018-16875 on Ubuntu 18.04 LTS (bionic) - low. Description: The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-16875 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information The 'golang-1.10' package in bionic is affected and needs fixing. OR The vulnerability of the 'golang-1.8' package in bionic is not known (status: 'needs-triage'). It is pending evaluation. OR The vulnerability of the 'golang-1.9' package in bionic is not known (status: 'needs-triage'). It is pending evaluation.
BACK