OVAL Reference oval:com.ubuntu.xenial:def:20163092000

Oval Definition:

oval:com.ubuntu.xenial:def:20163092000

Revision Date:	2016-07-04	Version:	1
Title:	CVE-2016-3092 on Ubuntu 16.04 LTS (xenial) - medium.
Description:	The MultipartStream class in Apache Commons Fileupload before 1.3.2, as used in Apache Tomcat 7.x before 7.0.70, 8.x before 8.0.36, 8.5.x before 8.5.3, and 9.x before 9.0.0.M7 and other products, allows remote attackers to cause a denial of service (CPU consumption) via a long boundary string.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-3092
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND Package Information The 'libcommons-fileupload-java' package in xenial was vulnerable but has been fixed (note: '1.3.1-2ubuntu0.1'). OR The 'tomcat6' package in xenial is affected and needs fixing. OR The 'tomcat7' package in xenial was vulnerable but has been fixed (note: '7.0.68-1ubuntu0.1'). OR The 'tomcat8' package in xenial was vulnerable but has been fixed (note: '8.0.32-1ubuntu1.1').