Oval Definition:	oval:com.ubuntu.precise:def:201610160000
Revision Date: 2017-01-24 Version: 1 Title: CVE-2016-10160 on Ubuntu 12.04 LTS (precise) - medium. Description: Off-by-one error in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted PHAR archive with an alias mismatch. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-10160 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'php5' package in precise was vulnerable but has been fixed (note: '5.3.10-1ubuntu3.26').
BACK