Oval Definition:	oval:com.ubuntu.bionic:def:2019117190000000
Revision Date: 2019-07-23 Version: 1 Title: CVE-2019-11719 on Ubuntu 18.04 LTS (bionic) - medium. Description: When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library. This could lead to information disclosure. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-11719 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information firefox package in bionic was vulnerable but has been fixed (note: '68.0+build3-0ubuntu0.18.04.1'). OR mozjs38 package in bionic is affected and may need fixing. OR mozjs52 package in bionic is affected and may need fixing. OR nss package in bionic was vulnerable but has been fixed (note: '2:3.35-2ubuntu2.3'). OR thunderbird package in bionic was vulnerable but has been fixed (note: '1:60.8.0+build1-0ubuntu0.18.04.1').
BACK