Oval Definition:	oval:com.ubuntu.xenial:def:201804870000000
Revision Date: 2018-02-13 Version: 1 Title: CVE-2018-0487 on Ubuntu 16.04 LTS (xenial) - high. Description: ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0 allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via a crafted certificate chain that is mishandled during RSASSA-PSS signature verification within a TLS or DTLS session. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-0487 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND mbedtls package in xenial was vulnerable but has been fixed (note: '2.2.1-2ubuntu0.3').
BACK