Oval Definition:	oval:com.ubuntu.trusty:def:20140475000
Revision Date: 2014-07-29 Version: 1 Title: CVE-2014-0475 on Ubuntu 14.04 LTS (trusty) - medium. Description: Multiple directory traversal vulnerabilities in GNU C Library (aka glibc or libc6) before 2.20 allow context-dependent attackers to bypass ForceCommand restrictions and possibly have other unspecified impact via a .. (dot dot) in a (1) LC_*, (2) LANG, or other locale environment variable. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-0475 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'eglibc' package in trusty was vulnerable but has been fixed (note: '2.19-0ubuntu6.1').
BACK