Oval Definition:	oval:com.ubuntu.trusty:def:20165191000
Revision Date: 2016-12-17 Version: 1 Title: CVE-2016-5191 on Ubuntu 14.04 LTS (trusty) - medium. Description: Bookmark handling in Google Chrome prior to 54.0.2840.59 for Windows, Mac, and Linux; 54.0.2840.85 for Android had insufficient validation of supplied data, which allowed a remote attacker to inject arbitrary scripts or HTML (UXSS) via crafted HTML pages, as demonstrated by an interpretation conflict between userinfo and scheme in an http://javascript:payload@example.com URL. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-5191 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND Package Information The 'chromium-browser' package in trusty was vulnerable but has been fixed (note: '58.0.3029.81-0ubuntu0.14.04.1172'). OR NOT While related to the CVE in some way, the 'oxide-qt' package in trusty is not affected.
BACK