Oval Definition:	oval:com.ubuntu.xenial:def:20115036000
Revision Date: 2011-12-29 Version: 1 Title: CVE-2011-5036 on Ubuntu 16.04 LTS (xenial) - medium. Description: Rack before 1.1.3, 1.2.x before 1.2.5, and 1.3.x before 1.3.6 computes hash values for form parameters without restricting the ability to trigger hash collisions predictably, which allows remote attackers to cause a denial of service (CPU consumption) by sending many crafted parameters. Family: unix Class: vulnerability Status: Reference(s): CVE-2011-5036 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND NOT While related to the CVE in some way, the 'ruby-rack' package in xenial is not affected (note: '1.4.1-1').
BACK