Oval Definition:	oval:com.ubuntu.cosmic:def:201419850000000
Revision Date: 2014-04-11 Version: 1 Title: CVE-2014-1985 on Ubuntu 18.10 (cosmic) - medium. Description: Open redirect vulnerability in the redirect_back_or_default function in app/controllers/application_controller.rb in Redmine before 2.4.5 and 2.5.x before 2.5.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the back url (back_url parameter). Family: unix Class: vulnerability Status: Reference(s): CVE-2014-1985 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND redmine package in cosmic, is related to the CVE in some way and has been fixed (note: '2.5.1-2').
BACK