Oval Definition:	oval:com.ubuntu.precise:def:20122686000
Revision Date: 2013-02-08 Version: 1 Title: CVE-2012-2686 on Ubuntu 12.04 LTS (precise) - medium. Description: crypto/evp/e_aes_cbc_hmac_sha1.c in the AES-NI functionality in the TLS 1.1 and 1.2 implementations in OpenSSL 1.0.1 before 1.0.1d allows remote attackers to cause a denial of service (application crash) via crafted CBC data. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-2686 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'openssl' package in precise was vulnerable but has been fixed (note: '1.0.1-4ubuntu5.8').
BACK