Oval Definition:oval:com.ubuntu.disco:def:201804970000000
Revision Date:2018-07-28Version:1
Title:CVE-2018-0497 on Ubuntu 19.04 (disco) - medium.
Description:ARM mbed TLS before 2.12.0, before 2.7.5, and before 2.1.14 allows remote attackers to achieve partial plaintext recovery (for a CBC based ciphersuite) via a timing-based side-channel attack. This vulnerability exists because of an incorrect fix (with a wrong SHA-384 calculation) for CVE-2013-0169.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-0497
Platform(s):Ubuntu 19.04
Product(s):
Definition Synopsis
  • Ubuntu 19.04 (disco) is installed.
  • AND mbedtls package in disco, is related to the CVE in some way and has been fixed (note: '2.12.0-1').
    • BACK