Oval Definition:	oval:com.ubuntu.xenial:def:2019135740000000
Revision Date: 2019-07-12 Version: 1 Title: CVE-2019-13574 on Ubuntu 16.04 LTS (xenial) - medium. Description: In lib/mini_magick/image.rb in MiniMagick before 4.9.4, a fetched remote image filename could cause remote command execution because Image.open input is directly passed to Kernel#open, which accepts a '|' character followed by a command. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-13574 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND ruby-mini-magick package in xenial is affected and needs fixing.
BACK