Oval Definition:	oval:com.ubuntu.xenial:def:201537500000000
Revision Date: 2015-08-16 Version: 1 Title: CVE-2015-3750 on Ubuntu 16.04 LTS (xenial) - medium. Description: WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as used in iOS before 8.4.1 and other products, does not enforce the HTTP Strict Transport Security (HSTS) protection mechanism for Content Security Policy (CSP) report requests, which allows man-in-the-middle attackers to obtain sensitive information by sniffing the network or spoof a report by modifying the client-server data stream. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-3750 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information qtwebkit-opensource-src: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'no update available'). OR qtwebkit-source: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'no update available'). OR webkitgtk: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'no update available').
BACK