OVAL Reference oval:com.ubuntu.cosmic:def:201811385000

Oval Definition:

oval:com.ubuntu.cosmic:def:201811385000

Revision Date:	2018-06-13	Version:	1
Title:	CVE-2018-11385 on Ubuntu 18.10 (cosmic) - medium.
Description:	An issue was discovered in the Security component in Symfony 2.7.x before 2.7.48, 2.8.x before 2.8.41, 3.3.x before 3.3.17, 3.4.x before 3.4.11, and 4.0.x before 4.0.11. A session fixation vulnerability within the "Guard" login feature may allow an attacker to impersonate a victim towards the web application if the session id value was previously known to the attacker.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-11385
Platform(s):	Ubuntu 18.10	Product(s):
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed. AND NOT While related to the CVE in some way, the 'symfony' package in cosmic is not affected (note: '3.4.15+dfsg-2ubuntu4').