Oval Definition:	oval:com.ubuntu.trusty:def:201816875000
Revision Date: 2018-12-14 Version: 1 Title: CVE-2018-16875 on Ubuntu 14.04 LTS (trusty) - low. Description: The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-16875 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND Package Information The vulnerability of the 'golang' package in trusty is not known (status: 'needs-triage'). It is pending evaluation. OR The 'golang-1.10' package in trusty is affected and needs fixing. OR The vulnerability of the 'golang-1.6' package in trusty is not known (status: 'needs-triage'). It is pending evaluation.
BACK