Oval Definition:	oval:com.ubuntu.bionic:def:20199794000
Revision Date: 2019-04-26 Version: 1 Title: CVE-2019-9794 on Ubuntu 18.04 LTS (bionic) - negligible. Description: A vulnerability was discovered where specific command line arguments are not properly discarded during Firefox invocation as a shell handler for URLs. This could be used to retrieve and execute files whose location is supplied through these command line arguments if Firefox is configured as the default URI handler for a given URI scheme in third party applications and these applications insufficiently sanitize URL data. *Note: This issue only affects Windows operating systems. Other operating systems are unaffected.*. This vulnerability affects Thunderbird < 60.6, Firefox ESR < 60.6, and Firefox < 66. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-9794 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information NOT While related to the CVE in some way, the 'firefox' package in bionic is not affected. OR The vulnerability of the 'mozjs38' package in bionic is not known (status: 'needs-triage'). It is pending evaluation. OR The vulnerability of the 'mozjs52' package in bionic is not known (status: 'needs-triage'). It is pending evaluation. OR NOT While related to the CVE in some way, the 'thunderbird' package in bionic is not affected.
BACK