Oval Definition:	oval:com.ubuntu.xenial:def:20121098000
Revision Date: 2012-03-13 Version: 1 Title: CVE-2012-1098 on Ubuntu 16.04 LTS (xenial) - medium. Description: Cross-site scripting (XSS) vulnerability in Ruby on Rails 3.0.x before 3.0.12, 3.1.x before 3.1.4, and 3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving a SafeBuffer object that is manipulated through certain methods. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-1098 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND NOT While related to the CVE in some way, the 'rails' package in xenial is not affected (note: 'contains no code').
BACK