Oval Definition:	oval:com.ubuntu.xenial:def:201671520000000
Revision Date: 2016-09-06 Version: 1 Title: CVE-2016-7152 on Ubuntu 16.04 LTS (xenial) - low. Description: The HTTPS protocol does not consider the role of the TCP congestion window in providing information about content length, which makes it easier for remote attackers to obtain cleartext data by leveraging a web-browser configuration in which third-party cookies are sent, aka a "HEIST" attack. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-7152 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information chromium-browser: while related to the CVE in some way, a decision has been made to ignore this issue. OR firefox: while related to the CVE in some way, a decision has been made to ignore this issue. OR oxide-qt: while related to the CVE in some way, a decision has been made to ignore this issue. OR thunderbird: while related to the CVE in some way, a decision has been made to ignore this issue.
BACK