Oval Definition:	oval:com.ubuntu.precise:def:20111425000
Revision Date: 2011-04-04 Version: 1 Title: CVE-2011-1425 on Ubuntu 12.04 LTS (precise) - medium. Description: xslt.c in XML Security Library (aka xmlsec) before 1.2.17, as used in WebKit and other products, when XSLT is enabled, allows remote attackers to create or overwrite arbitrary files via vectors involving the libxslt output extension and a ds:Transform element during signature verification. Family: unix Class: vulnerability Status: Reference(s): CVE-2011-1425 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND While related to the CVE in some way, the 'xmlsec1' package in precise is not affected (note: '1.2.14-1.1').
BACK