Oval Definition:	oval:com.ubuntu.xenial:def:201630920000000
Revision Date: 2016-07-04 Version: 1 Title: CVE-2016-3092 on Ubuntu 16.04 LTS (xenial) - medium. Description: The MultipartStream class in Apache Commons Fileupload before 1.3.2, as used in Apache Tomcat 7.x before 7.0.70, 8.x before 8.0.36, 8.5.x before 8.5.3, and 9.x before 9.0.0.M7 and other products, allows remote attackers to cause a denial of service (CPU consumption) via a long boundary string. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-3092 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information libcommons-fileupload-java package in xenial was vulnerable but has been fixed (note: '1.3.1-2ubuntu0.1'). OR tomcat6 package in xenial is affected and needs fixing. OR tomcat7 package in xenial was vulnerable but has been fixed (note: '7.0.68-1ubuntu0.1'). OR tomcat8 package in xenial was vulnerable but has been fixed (note: '8.0.32-1ubuntu1.1').
BACK