OVAL Reference oval:com.ubuntu.trusty:def:20152152000

Oval Definition:

oval:com.ubuntu.trusty:def:20152152000

Revision Date:	2015-03-18	Version:	1
Title:	CVE-2015-2152 on Ubuntu 14.04 LTS (trusty) - medium.
Description:	Xen 4.5.x and earlier enables certain default backends when emulating a VGA device for an x86 HVM guest qemu even when the configuration disables them, which allows local guest users to obtain access to the VGA console by (1) setting the DISPLAY environment variable, when compiled with SDL support, or connecting to the VNC server on (2) ::1 or (3) 127.0.0.1, when not compiled with SDL support.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2015-2152
Platform(s):	Ubuntu 14.04 LTS	Product(s):
Definition Synopsis
Ubuntu 14.04 LTS (trusty) is installed. AND The 'xen' package in trusty was vulnerable but has been fixed (note: '4.4.1-0ubuntu0.14.04.4').