Oval Definition:	oval:com.ubuntu.trusty:def:20153427000
Revision Date: 2015-05-14 Version: 1 Title: CVE-2015-3427 on Ubuntu 14.04 LTS (trusty) - medium. Description: Quassel before 0.12.2 does not properly re-initialize the database session when the PostgreSQL database is restarted, which allows remote attackers to conduct SQL injection attacks via a \ (backslash) in a message. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4422. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-3427 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'quassel' package in trusty was vulnerable but has been fixed (note: '0.10.0-0ubuntu2.2').
BACK