Oval Definition:	oval:com.ubuntu.disco:def:2019124150000000
Revision Date: 2019-10-23 Version: 1 Title: CVE-2019-12415 on Ubuntu 19.04 (disco) - medium. Description: In Apache POI up to 4.1.0, when using the tool XSSFExportToXml to convert user-provided Microsoft Excel documents, a specially crafted document can allow an attacker to read files from the local filesystem or from internal network resources via XML External Entity (XXE) Processing. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-12415 Platform(s): Ubuntu 19.04 Product(s): Definition Synopsis Ubuntu 19.04 (disco) is installed. AND libapache-poi-java package in disco is affected and may need fixing.
BACK