Oval Definition:	oval:com.ubuntu.cosmic:def:20199790000
Revision Date: 2019-04-26 Version: 1 Title: CVE-2019-9790 on Ubuntu 18.10 (cosmic) - medium. Description: A use-after-free vulnerability can occur when a raw pointer to a DOM element on a page is obtained using JavaScript and the element is then removed while still in use. This results in a potentially exploitable crash. This vulnerability affects Thunderbird < 60.6, Firefox ESR < 60.6, and Firefox < 66. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-9790 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND Package Information The 'firefox' package in cosmic was vulnerable but has been fixed (note: '66.0+build3-0ubuntu0.18.10.1'). OR The vulnerability of the 'mozjs52' package in cosmic is not known (status: 'needs-triage'). It is pending evaluation. OR The vulnerability of the 'mozjs60' package in cosmic is not known (status: 'needs-triage'). It is pending evaluation. OR The 'thunderbird' package in cosmic was vulnerable but has been fixed (note: '1:60.6.1+build2-0ubuntu0.18.10.1').
BACK