Oval Definition:	oval:com.ubuntu.precise:def:20124732000
Revision Date: 2012-11-11 Version: 1 Title: CVE-2012-4732 on Ubuntu 12.04 LTS (precise) - medium. Description: Cross-site request forgery (CSRF) vulnerability in Request Tracker (RT) 3.8.12 and other versions before 3.8.15, and 4.0.6 and other versions before 4.0.8, allows remote attackers to hijack the authentication of users for requests that toggle ticket bookmarks. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-4732 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'request-tracker3.8' package in precise was vulnerable but has been fixed (note: '3.8.11-1ubuntu0.1'). OR The 'request-tracker4' package in precise is affected and needs fixing.
BACK