Oval Definition:	oval:com.ubuntu.trusty:def:20169866000
Revision Date: 2016-12-10 Version: 1 Title: CVE-2016-9866 on Ubuntu 14.04 LTS (trusty) - medium. Description: An issue was discovered in phpMyAdmin. When the arg_separator is different from its default & value, the CSRF token was not properly stripped from the return URL of the preference import action. All 4.6.x versions (prior to 4.6.5), 4.4.x versions (prior to 4.4.15.9), and 4.0.x versions (prior to 4.0.10.18) are affected. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-9866 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'phpmyadmin' package in trusty is affected and needs fixing.
BACK