Oval Definition:	oval:com.ubuntu.precise:def:20155312000
Revision Date: 2015-12-15 Version: 1 Title: CVE-2015-5312 on Ubuntu 12.04 LTS (precise) - low. Description: The xmlStringLenDecodeEntities function in parser.c in libxml2 before 2.9.3 does not properly prevent entity expansion, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted XML data, a different vulnerability than CVE-2014-3660. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-5312 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'libxml2' package in precise was vulnerable but has been fixed (note: '2.7.8.dfsg-5.1ubuntu4.13').
BACK