OVAL Reference oval:com.ubuntu.xenial:def:20157183000

Oval Definition:

oval:com.ubuntu.xenial:def:20157183000

Revision Date:	2015-11-05	Version:	1
Title:	CVE-2015-7183 on Ubuntu 16.04 LTS (xenial) - medium.
Description:	Integer overflow in the PL_ARENA_ALLOCATE implementation in Netscape Portable Runtime (NSPR) in Mozilla Network Security Services (NSS) before 3.19.2.1 and 3.20.x before 3.20.1, as used in Firefox before 42.0 and Firefox ESR 38.x before 38.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via unspecified vectors.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2015-7183
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND Package Information The 'firefox' package in xenial was vulnerable but has been fixed (note: '42.0+build2-0ubuntu1'). OR NOT While related to the CVE in some way, the 'nspr' package in xenial is not affected (note: '2:4.10.10-1ubuntu1'). OR The 'thunderbird' package in xenial was vulnerable but has been fixed (note: '1:38.4.0+build3-0ubuntu1'). OR NOT While related to the CVE in some way, the 'virtualbox' package in xenial is not affected (note: '5.0.14-dfsg-1').