Oval Definition:	oval:com.ubuntu.xenial:def:201645530000000
Revision Date: 2016-05-10 Version: 1 Title: CVE-2016-4553 on Ubuntu 16.04 LTS (xenial) - medium. Description: client_side.cc in Squid before 3.5.18 and 4.x before 4.0.10 does not properly ignore the Host header when absolute-URI is provided, which allows remote attackers to conduct cache-poisoning attacks via an HTTP request. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-4553 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND squid3 package in xenial was vulnerable but has been fixed (note: '3.5.12-1ubuntu7.2').
BACK