Oval Definition:	oval:com.ubuntu.xenial:def:201804880000000
Revision Date: 2018-02-13 Version: 1 Title: CVE-2018-0488 on Ubuntu 16.04 LTS (xenial) - high. Description: ARM mbed TLS before 1.3.22, before 2.1.10, and before 2.7.0, when the truncated HMAC extension and CBC are used, allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption) via a crafted application packet within a TLS or DTLS session. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-0488 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND mbedtls package in xenial was vulnerable but has been fixed (note: '2.2.1-2ubuntu0.3').
BACK