Oval Definition:	oval:com.ubuntu.xenial:def:201619500000000
Revision Date: 2016-03-13 Version: 1 Title: CVE-2016-1950 on Ubuntu 16.04 LTS (xenial) - medium. Description: Heap-based buffer overflow in Mozilla Network Security Services (NSS) before 3.19.2.3 and 3.20.x and 3.21.x before 3.21.1, as used in Mozilla Firefox before 45.0 and Firefox ESR 38.x before 38.7, allows remote attackers to execute arbitrary code via crafted ASN.1 data in an X.509 certificate. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-1950 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information firefox package in xenial, is related to the CVE in some way and has been fixed (note: '45.0+build2-0ubuntu1'). OR nss package in xenial was vulnerable but has been fixed (note: '2:3.21-1ubuntu4'). OR thunderbird package in xenial was vulnerable but has been fixed (note: '1:38.7.2+build1-0ubuntu0.16.04.1').
BACK