Oval Definition:	oval:com.ubuntu.xenial:def:2019115030000000
Revision Date: 2019-04-24 Version: 1 Title: CVE-2019-11503 on Ubuntu 16.04 LTS (xenial) - low. Description: snap-confine as included in snapd before 2.39 did not guard against symlink races when performing the chdir() to the current working directory of the calling user, aka a "cwd restore permission bypass." Family: unix Class: vulnerability Status: Reference(s): CVE-2019-11503 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND snapd package in xenial was vulnerable but has been fixed (note: '2.39.2ubuntu0.2').
BACK