Oval Definition:oval:com.ubuntu.xenial:def:2018155990000000
Revision Date:2018-08-21Version:1
Title:CVE-2018-15599 on Ubuntu 16.04 LTS (xenial) - low.
Description:The recv_msg_userauth_request function in svr-auth.c in Dropbear through 2018.76 is prone to a user enumeration vulnerability because username validity affects how fields in SSH_MSG_USERAUTH messages are handled, a similar issue to CVE-2018-15473 in an unrelated codebase.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-15599
Platform(s):Ubuntu 16.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 16.04 LTS (xenial) is installed.
  • AND dropbear package in xenial is affected and needs fixing.
    • BACK