Oval Definition:	oval:com.ubuntu.xenial:def:201892750000000
Revision Date: 2018-04-04 Version: 1 Title: CVE-2018-9275 on Ubuntu 16.04 LTS (xenial) - untriaged. Description: In check_user_token in util.c in the Yubico PAM module (aka pam_yubico) 2.18 through 2.25, successful logins can leak file descriptors to the auth mapping file, which can lead to information disclosure (serial number of a device) and/or DoS (reaching the maximum number of file descriptors). Family: unix Class: vulnerability Status: Reference(s): CVE-2018-9275 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND yubico-pam package in xenial is affected and may need fixing.
BACK