OVAL Reference oval:com.ubuntu.trusty:def:20115035000

Oval Definition:

oval:com.ubuntu.trusty:def:20115035000

Revision Date:	2011-12-29	Version:	1
Title:	CVE-2011-5035 on Ubuntu 14.04 LTS (trusty) - medium.
Description:	Oracle Glassfish 2.1.1, 3.0.1, and 3.1.1, as used in Communications Server 2.0, Sun Java System Application Server 8.1 and 8.2, and possibly other products, computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters, aka Oracle security ticket S0104869.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2011-5035
Platform(s):	Ubuntu 14.04 LTS	Product(s):
Definition Synopsis
Ubuntu 14.04 LTS (trusty) is installed. AND Package Information NOT While related to the CVE in some way, the 'glassfish' package in trusty is not affected. OR NOT While related to the CVE in some way, the 'openjdk-6' package in trusty is not affected (note: '6b24-1.11.1-0ubuntu1'). OR NOT While related to the CVE in some way, the 'openjdk-7' package in trusty is not affected (note: '7~u3-2.1-1ubuntu1').