Oval Definition:	oval:com.ubuntu.trusty:def:20171000367000
Revision Date: 2017-06-05 Version: 1 Title: CVE-2017-1000367 on Ubuntu 14.04 LTS (trusty) - high. Description: Todd Miller's sudo version 1.8.20 and earlier is vulnerable to an input validation (embedded spaces) in the get_process_ttyname() function resulting in information disclosure and command execution. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-1000367 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'sudo' package in trusty was vulnerable but has been fixed (note: '1.8.9p5-1ubuntu1.4').
BACK