Oval Definition:	oval:com.ubuntu.xenial:def:201435780000000
Revision Date: 2015-02-19 Version: 1 Title: CVE-2014-3578 on Ubuntu 16.04 LTS (xenial) - medium. Description: Directory traversal vulnerability in Pivotal Spring Framework 3.x before 3.2.9 and 4.0 before 4.0.5 allows remote attackers to read arbitrary files via a crafted URL. It was discovered that Spring Framework incorrectly handled URL inputs. An attacker could possibly use this issue to read arbitrary files. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-3578 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND libspring-java package in xenial, is related to the CVE in some way and has been fixed (note: '3.2.12-1').
BACK