Oval Definition:	oval:com.ubuntu.trusty:def:20150236000
Revision Date: 2015-01-29 Version: 1 Title: CVE-2015-0236 on Ubuntu 14.04 LTS (trusty) - low. Description: libvirt before 1.2.12 allow remote authenticated users to obtain the VNC password by using the VIR_DOMAIN_XML_SECURE flag with a crafted (1) snapshot to the virDomainSnapshotGetXMLDesc interface or (2) image to the virDomainSaveImageGetXMLDesc interface. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-0236 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'libvirt' package in trusty was vulnerable but has been fixed (note: '1.2.2-0ubuntu13.1.16').
BACK