Oval Definition:	oval:com.ubuntu.xenial:def:201496490000000
Revision Date: 2015-01-27 Version: 1 Title: CVE-2014-9649 on Ubuntu 16.04 LTS (xenial) - negligible. Description: Cross-site scripting (XSS) vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary web script or HTML via the path info to api/, which is not properly handled in an error message. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-9649 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND rabbitmq-server package in xenial, is related to the CVE in some way and has been fixed (note: '3.4.2-2').
BACK