Oval Definition:oval:com.ubuntu.disco:def:201880400000000
Revision Date:2018-08-29Version:1
Title:CVE-2018-8040 on Ubuntu 19.04 (disco) - medium.
Description:Pages that are rendered using the ESI plugin can have access to the cookie header when the plugin is configured not to allow access. This affects Apache Traffic Server (ATS) versions 6.0.0 to 6.2.2 and 7.0.0 to 7.1.3. To resolve this issue users running 6.x should upgrade to 6.2.3 or later versions and 7.x users should upgrade to 7.1.4 or later versions.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-8040
Platform(s):Ubuntu 19.04
Product(s):
Definition Synopsis
  • Ubuntu 19.04 (disco) is installed.
  • AND trafficserver package in disco, is related to the CVE in some way and has been fixed (note: '7.1.4+ds-1').
  • BACK