OVAL Reference oval:com.ubuntu.precise:def:20157183000

Oval Definition:

oval:com.ubuntu.precise:def:20157183000

Revision Date:	2015-11-05	Version:	1
Title:	CVE-2015-7183 on Ubuntu 12.04 LTS (precise) - medium.
Description:	Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2015-7183
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'firefox' package in precise was vulnerable but has been fixed (note: '42.0+build2-0ubuntu0.12.04.1'). OR The 'nspr' package in precise was vulnerable but has been fixed (note: '4.10.10-0ubuntu0.12.04.1'). OR The 'thunderbird' package in precise was vulnerable but has been fixed (note: '1:38.4.0+build3-0ubuntu0.12.04.1'). OR The 'virtualbox' package in precise is affected and needs fixing.