Oval Definition:	oval:com.ubuntu.precise:def:20162105000
Revision Date: 2016-05-04 Version: 1 Title: CVE-2016-2105 on Ubuntu 12.04 LTS (precise) - low. Description: Integer overflow in the EVP_EncodeUpdate function in crypto/evp/encode.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service (heap memory corruption) via a large amount of binary data. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-2105 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'openssl' package in precise was vulnerable but has been fixed (note: '1.0.1-4ubuntu5.36'). OR The vulnerability of the 'openssl098' package in precise is not known (status: 'needs-triage'). It is pending evaluation.
BACK