OVAL Reference oval:com.ubuntu.precise:def:20161967000

Oval Definition:

oval:com.ubuntu.precise:def:20161967000

Revision Date:	2016-03-13	Version:	1
Title:	CVE-2016-1967 on Ubuntu 12.04 LTS (precise) - medium.
Description:	Mozilla Firefox before 45.0 does not properly restrict the availability of IFRAME Resource Timing API times, which allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via crafted JavaScript code that leverages history.back and performance.getEntries calls after restoring a browser session. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-7207.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-1967
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'firefox' package in precise was vulnerable but has been fixed (note: '45.0+build2-0ubuntu0.12.04.1'). OR NOT While related to the CVE in some way, the 'thunderbird' package in precise is not affected.