OVAL Reference oval:com.ubuntu.cosmic:def:20167073000

Oval Definition:

oval:com.ubuntu.cosmic:def:20167073000

Revision Date:	2018-09-11	Version:	1
Title:	CVE-2016-7073 on Ubuntu 18.10 (cosmic) - medium.
Description:	An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 4.0.4, allowing an attacker in position of man-in-the-middle to alter the content of an AXFR because of insufficient validation of TSIG signatures. A missing check of the TSIG time and fudge values was found in AXFRRetriever, leading to a possible replay attack.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-7073
Platform(s):	Ubuntu 18.10	Product(s):
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed. AND Package Information NOT While related to the CVE in some way, the 'pdns' package in cosmic is not affected (note: '4.0.2-1'). OR NOT While related to the CVE in some way, the 'pdns-recursor' package in cosmic is not affected (note: '4.0.4-1').