OVAL Reference oval:com.ubuntu.xenial:def:20162837000

Oval Definition:

oval:com.ubuntu.xenial:def:20162837000

Revision Date:	2016-08-04	Version:	1
Title:	CVE-2016-2837 on Ubuntu 16.04 LTS (xenial) - medium.
Description:	Heap-based buffer overflow in the ClearKey Content Decryption Module (CDM) in the Encrypted Media Extensions (EME) API in Mozilla Firefox before 48.0 and Firefox ESR 45.x before 45.3 might allow remote attackers to execute arbitrary code by providing a malformed video and leveraging a Gecko Media Plugin (GMP) sandbox bypass.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-2837
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND Package Information The 'firefox' package in xenial was vulnerable but has been fixed (note: '48.0+build2-0ubuntu0.16.04.1'). OR NOT While related to the CVE in some way, the 'thunderbird' package in xenial is not affected.