Oval Definition:	oval:com.ubuntu.cosmic:def:20155338000
Revision Date: 2016-02-22 Version: 1 Title: CVE-2015-5338 on Ubuntu 18.10 (cosmic) - medium. Description: Multiple cross-site request forgery (CSRF) vulnerabilities in the lesson module in Moodle through 2.6.11, 2.7.x before 2.7.11, 2.8.x before 2.8.9, and 2.9.x before 2.9.3 allow remote attackers to hijack the authentication of arbitrary users for requests to (1) mod/lesson/mediafile.php or (2) mod/lesson/view.php. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-5338 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND NOT While related to the CVE in some way, the 'moodle' package in cosmic is not affected (note: '2.7.11+dfsg-2').
BACK