Oval Definition:	oval:com.ubuntu.xenial:def:20163168000
Revision Date: 2016-04-12 Version: 1 Title: CVE-2016-3168 on Ubuntu 16.04 LTS (xenial) - medium. Description: The System module in Drupal 6.x before 6.38 and 7.x before 7.43 might allow remote attackers to hijack the authentication of site administrators for requests that download and run files with arbitrary JSON-encoded content, aka a "reflected file download vulnerability." Family: unix Class: vulnerability Status: Reference(s): CVE-2016-3168 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND NOT While related to the CVE in some way, the 'drupal7' package in xenial is not affected (note: '7.43-1').
BACK