OVAL Reference oval:com.ubuntu.xenial:def:2019170160000000

Oval Definition:

oval:com.ubuntu.xenial:def:2019170160000000

Revision Date:	2020-01-08	Version:	1
Title:	CVE-2019-17016 on Ubuntu 16.04 LTS (xenial) - medium.
Description:	When pasting a <style> tag from the clipboard into a rich text editor, the CSS sanitizer incorrectly rewrites a @namespace rule. This could allow for injection into certain types of websites resulting in data exfiltration. This vulnerability affects Firefox ESR < 68.4 and Firefox < 72.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2019-17016
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND Package Information firefox package in xenial was vulnerable but has been fixed (note: '72.0.1+build1-0ubuntu0.16.04.1'). OR thunderbird package in xenial is affected and needs fixing.