Oval Definition:
oval:com.ubuntu.xenial:def:20164053000
Revision Date
:
2016-04-25
Version
:
1
Title
:
CVE-2016-4053 on Ubuntu 16.04 LTS (xenial) - low.
Description
:
Squid 3.x before 3.5.17 and 4.x before 4.0.9 allow remote attackers to obtain sensitive stack layout information via crafted Edge Side Includes (ESI) responses, related to incorrect use of assert and compiler optimization.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2016-4053
Platform(s)
:
Ubuntu 16.04 LTS
Product(s)
:
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed.
AND
The 'squid3' package in xenial was vulnerable but has been fixed (note: '3.5.12-1ubuntu7.2').
BACK