OVAL Reference oval:com.ubuntu.cosmic:def:2018159190000000

Oval Definition:

oval:com.ubuntu.cosmic:def:2018159190000000

Revision Date:	2018-08-28	Version:	1
Title:	CVE-2018-15919 on Ubuntu 18.10 (cosmic) - low.
Description:	Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-15919
Platform(s):	Ubuntu 18.10	Product(s):
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed. AND Package Information openssh: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR openssh-ssh1: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').