Oval Definition:	oval:com.ubuntu.xenial:def:20175630000
Revision Date: 2017-02-01 Version: 1 Title: CVE-2017-5630 on Ubuntu 16.04 LTS (xenial) - negligible. Description: PECL in the download utility class in the Installer in PEAR Base System v1.10.1 does not validate file types and filenames after a redirect, which allows remote HTTP servers to overwrite files via crafted responses, as demonstrated by a .htaccess overwrite. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-5630 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information The 'php-pear' package in xenial is affected, but a decision has been made to defer addressing it (note: '2019-04-25'). OR NOT While related to the CVE in some way, the 'php7.0' package in xenial is not affected.
BACK