Oval Definition:	oval:com.ubuntu.xenial:def:201615670000000
Revision Date: 2016-01-26 Version: 1 Title: CVE-2016-1567 on Ubuntu 16.04 LTS (xenial) - low. Description: chrony before 1.31.2 and 2.x before 2.2.1 do not verify peer associations of symmetric keys when authenticating packets, which might allow remote attackers to conduct impersonation attacks via an arbitrary trusted key, aka a "skeleton key." Family: unix Class: vulnerability Status: Reference(s): CVE-2016-1567 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND chrony package in xenial was vulnerable but has been fixed (note: '2.1.1-1ubuntu0.1').
BACK