Oval Definition:	oval:com.ubuntu.xenial:def:201450210000000
Revision Date: 2014-07-22 Version: 1 Title: CVE-2014-5021 on Ubuntu 16.04 LTS (xenial) - medium. Description: Cross-site scripting (XSS) vulnerability in the Form API in Drupal 6.x before 6.32 and possibly 7.x before 7.29 allows remote authenticated users with the "administer taxonomy" permission to inject arbitrary web script or HTML via an option group label. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-5021 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND drupal7 package in xenial, is related to the CVE in some way and has been fixed (note: '7.32-1').
BACK