Oval Definition:	oval:com.ubuntu.disco:def:2019117190000000
Revision Date: 2019-07-23 Version: 1 Title: CVE-2019-11719 on Ubuntu 19.04 (disco) - medium. Description: When importing a curve25519 private key in PKCS#8format with leading 0x00 bytes, it is possible to trigger an out-of-bounds read in the Network Security Services (NSS) library. This could lead to information disclosure. This vulnerability affects Firefox ESR < 60.8, Firefox < 68, and Thunderbird < 60.8. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-11719 Platform(s): Ubuntu 19.04 Product(s): Definition Synopsis Ubuntu 19.04 (disco) is installed. AND Package Information firefox package in disco was vulnerable but has been fixed (note: '68.0+build3-0ubuntu0.19.04.1'). OR mozjs52 package in disco is affected and may need fixing. OR mozjs60 package in disco is affected and may need fixing. OR nss package in disco was vulnerable but has been fixed (note: '2:3.42-1ubuntu2.1'). OR thunderbird package in disco was vulnerable but has been fixed (note: '1:60.8.0+build1-0ubuntu0.19.04.1').
BACK