Oval Definition:	oval:com.ubuntu.precise:def:20126113000
Revision Date: 2013-01-19 Version: 1 Title: CVE-2012-6113 on Ubuntu 12.04 LTS (precise) - medium. Description: The openssl_encrypt function in ext/openssl/openssl.c in PHP 5.3.9 through 5.3.13 does not initialize a certain variable, which allows remote attackers to obtain sensitive information from process memory by providing zero bytes of input data. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-6113 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'php5' package in precise was vulnerable but has been fixed (note: '5.3.10-1ubuntu3.5').
BACK