OVAL Reference oval:com.ubuntu.trusty:def:20152736000

Oval Definition:

oval:com.ubuntu.trusty:def:20152736000

Revision Date:	2015-07-05	Version:	1
Title:	CVE-2015-2736 on Ubuntu 14.04 LTS (trusty) - medium.
Description:	The nsZipArchive::BuildFileList function in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 accesses unintended memory locations, which allows remote attackers to have an unspecified impact via a crafted ZIP archive.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2015-2736
Platform(s):	Ubuntu 14.04 LTS	Product(s):
Definition Synopsis
Ubuntu 14.04 LTS (trusty) is installed. AND Package Information The 'firefox' package in trusty was vulnerable but has been fixed (note: '39.0+build5-0ubuntu0.14.04.1'). OR The 'thunderbird' package in trusty was vulnerable but has been fixed (note: '1:31.8.0+build1-0ubuntu0.14.04.1').