Oval Definition:	oval:com.ubuntu.cosmic:def:201777910000000
Revision Date: 2018-06-11 Version: 1 Title: CVE-2017-7791 on Ubuntu 18.10 (cosmic) - medium. Description: On pages containing an iframe, the "data:" protocol can be used to create a modal alert that will render over arbitrary domains following page navigation, spoofing of the origin of the modal alert from the iframe content. This vulnerability affects Thunderbird < 52.3, Firefox ESR < 52.3, and Firefox < 55. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-7791 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND Package Information firefox package in cosmic was vulnerable but has been fixed (note: '55.0.2+build1-0ubuntu4'). OR thunderbird package in cosmic was vulnerable but has been fixed (note: '1:52.4.0+build1-0ubuntu2').
BACK