Oval Definition:	oval:com.ubuntu.xenial:def:2017158960000000
Revision Date: 2017-12-11 Version: 1 Title: CVE-2017-15896 on Ubuntu 16.04 LTS (xenial) - untriaged. Description: Node.js was affected by OpenSSL vulnerability CVE-2017-3737 in regards to the use of SSL_read() due to TLS handshake failure. The result was that an active network attacker could send application data to Node.js using the TLS or HTTP2 modules in a way that bypassed TLS authentication and encryption. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-15896 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information NOT nodejs package in xenial, while related to the CVE in some way, is not affected (note: 'code not present'). OR NOT nodejs-legacy package in xenial, while related to the CVE in some way, is not affected (note: 'code not present').
BACK