Oval Definition:	oval:com.ubuntu.xenial:def:20162039000
Revision Date: 2016-02-19 Version: 1 Title: CVE-2016-2039 on Ubuntu 16.04 LTS (xenial) - medium. Description: libraries/session.inc.php in phpMyAdmin 4.0.x before 4.0.10.13, 4.4.x before 4.4.15.3, and 4.5.x before 4.5.4 does not properly generate CSRF token values, which allows remote attackers to bypass intended access restrictions by predicting a value. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-2039 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND NOT While related to the CVE in some way, the 'phpmyadmin' package in xenial is not affected (note: '4:4.5.4-1').
BACK