Oval Definition:	oval:com.ubuntu.precise:def:20140050000
Revision Date: 2014-04-01 Version: 1 Title: CVE-2014-0050 on Ubuntu 12.04 LTS (precise) - medium. Description: MultipartStream.java in Apache Commons FileUpload before 1.3.1, as used in Apache Tomcat, JBoss Web, and other products, allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted Content-Type header that bypasses a loop's intended exit conditions. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-0050 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'libcommons-fileupload-java' package in precise is affected and needs fixing. OR NOT While related to the CVE in some way, the 'tomcat6' package in precise is not affected. OR The 'tomcat7' package in precise is affected and needs fixing.
BACK