Oval Definition:	oval:com.ubuntu.bionic:def:20195427000
Revision Date: 2019-04-22 Version: 1 Title: CVE-2019-5427 on Ubuntu 18.04 LTS (bionic) - medium. Description: c3p0 version < 0.9.5.4 may be exploited by a billion laughs attack when loading XML configuration due to missing protections against recursive entity expansion when loading configuration. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-5427 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND The vulnerability of the 'c3p0' package in bionic is not known (status: 'needs-triage'). It is pending evaluation.
BACK