Public date and copyright year missing for CVE-2020-11935 in OVAL

Bug #1886906 reported by Steen Schutt on 2020-07-09
This bug affects 1 person
Affects Status Importance Assigned to Milestone
Ubuntu CVE Tracker

Bug Description

When reading the OVAL file, the public_date tag contains "unknown", and the rights tag says "Copyright (C) unknown Canonical Ltd.".

<definition class="vulnerability" id="oval:com.ubuntu.bionic:def:2020119350000000" version="1">
        <title>CVE-2020-11935 on Ubuntu 18.04 LTS (bionic) - medium.</title>
        <description>It was discovered that aufs improperly managed inode reference counts in the vfsub_dentry_open() method. A local attacker could use this vulnerability to cause a denial of service attack.</description>
        <affected family="unix">
            <platform>Ubuntu 18.04 LTS</platform>
        <reference source="CVE" ref_id="CVE-2020-11935" ref_url="" />
            <rights>Copyright (C) unknown Canonical Ltd.</rights>
            <discovered_by>Mauricio Faria de Oliveira</discovered_by>


Alex Murray (alexmurray) wrote :

Thanks for bringing this to our attention - this should be fixed via - the OVAL will be automatically re-generated within a few hours and so it should also be fixed there soon.

Changed in ubuntu-cve-tracker:
status: New → Fix Committed
To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers