Oval Definition:	oval:com.ubuntu.precise:def:20166302000
Revision Date: 2016-09-16 Version: 1 Title: CVE-2016-6302 on Ubuntu 12.04 LTS (precise) - low. Description: The tls_decrypt_ticket function in ssl/t1_lib.c in OpenSSL before 1.1.0 does not consider the HMAC size during validation of the ticket length, which allows remote attackers to cause a denial of service via a ticket that is too short. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-6302 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'openssl' package in precise was vulnerable but has been fixed (note: '1.0.1-4ubuntu5.37'). OR The vulnerability of the 'openssl098' package in precise is not known (status: 'needs-triage'). It is pending evaluation.
BACK