Oval Definition:
oval:com.ubuntu.disco:def:2019189280000000
Revision Date
:
2019-11-15
Version
:
1
Title
:
CVE-2019-18928 on Ubuntu 19.04 (disco) - medium.
Description
:
Cyrus IMAP 2.5.x before 2.5.14 and 3.x before 3.0.12 allows privilege escalation because an HTTP request may be interpreted in the authentication context of an unrelated previous request that arrived over the same connection.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2019-18928
Platform(s)
:
Ubuntu 19.04
Product(s)
:
Definition Synopsis
Ubuntu 19.04 (disco) is installed.
AND
cyrus-imapd package in disco is affected and needs fixing.
BACK