OVAL Reference oval:com.ubuntu.cosmic:def:201776740000000

Oval Definition:

oval:com.ubuntu.cosmic:def:201776740000000

Revision Date:	2017-08-10	Version:	1
Title:	CVE-2017-7674 on Ubuntu 18.10 (cosmic) - medium.
Description:	The CORS Filter in Apache Tomcat 9.0.0.M1 to 9.0.0.M21, 8.5.0 to 8.5.15, 8.0.0.RC1 to 8.0.44 and 7.0.41 to 7.0.78 did not add an HTTP Vary header indicating that the response varies depending on Origin. This permitted client and server side cache poisoning in some circumstances.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2017-7674
Platform(s):	Ubuntu 18.10	Product(s):
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed. AND Package Information tomcat7 package in cosmic, is related to the CVE in some way and has been fixed (note: '7.0.78-1'). OR tomcat8 package in cosmic, is related to the CVE in some way and has been fixed (note: '8.5.21-1').