Oval Definition:	oval:com.ubuntu.trusty:def:20175617000
Revision Date: 2017-03-16 Version: 1 Title: CVE-2017-5617 on Ubuntu 14.04 LTS (trusty) - medium. Description: The SVG Salamander (aka svgSalamander) library, when used in a web application, allows remote attackers to conduct server-side request forgery (SSRF) attacks via an xlink:href attribute in an SVG file. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-5617 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'svgsalamander' package in trusty was vulnerable but has been fixed (note: '0~svn95-1+deb8u1build0.14.04.1').
BACK