Oval Definition:	oval:com.ubuntu.xenial:def:201608310000000
Revision Date: 2016-03-12 Version: 1 Title: CVE-2016-0831 on Ubuntu 16.04 LTS (xenial) - medium. Description: The getDeviceIdForPhone function in internal/telephony/PhoneSubInfoController.java in Telephony in Android 5.x before 5.1.1 LMY49H and 6.x before 2016-03-01 does not check for the READ_PHONE_STATE permission, which allows attackers to obtain sensitive information via a crafted application, aka internal bug 25778215. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-0831 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND android package in xenial was vulnerable but has been fixed (note: '20160307-0742-0ubuntu3').
BACK