Oval Definition:	oval:com.ubuntu.cosmic:def:20162039000
Revision Date: 2016-02-19 Version: 1 Title: CVE-2016-2039 on Ubuntu 18.10 (cosmic) - medium. Description: libraries/session.inc.php in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.15.3, and 4.5.x before 4.5.4 does not properly generate CSRF token values, which allows remote attackers to bypass intended access restrictions by predicting a value. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-2039 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND NOT While related to the CVE in some way, the 'phpmyadmin' package in cosmic is not affected (note: '4:4.5.4-1').
BACK