Oval Definition:	oval:com.ubuntu.precise:def:20164477000
Revision Date: 2016-05-09 Version: 1 Title: CVE-2016-4477 on Ubuntu 12.04 LTS (precise) - low. Description: wpa_supplicant 0.4.0 through 2.5 does not reject \n and \r characters in passphrase parameters, which allows local users to trigger arbitrary library loading and consequently gain privileges, or cause a denial of service (daemon outage), via a crafted (1) SET, (2) SET_CRED, or (3) SET_NETWORK command. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-4477 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'hostapd' package in precise is affected and needs fixing. OR The 'wpasupplicant' package in precise is affected and needs fixing.
BACK