Oval Definition:	oval:com.ubuntu.precise:def:20153219000
Revision Date: 2015-08-20 Version: 1 Title: CVE-2015-3219 on Ubuntu 12.04 LTS (precise) - medium. Description: Cross-site scripting (XSS) vulnerability in the Orchestration/Stack section in OpenStack Dashboard (Horizon) 2014.2 before 2014.2.4 and 2015.1.x before 2015.1.1 allows remote attackers to inject arbitrary web script or HTML via the description parameter in a heat template, which is not properly handled in the help_text attribute in the Field class. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-3219 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND While related to the CVE in some way, the 'horizon' package in precise is not affected (note: 'code not present').
BACK