Oval Definition:	oval:com.ubuntu.artful:def:20131438000
Revision Date: 2014-01-19 Version: 1 Title: CVE-2013-1438 on Ubuntu 17.10 (artful) - medium. Description: Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in libraw, ufraw, shotwell, and other products, allows context-dependent attackers to cause a denial of service via a crafted photo file that triggers a (1) divide-by-zero, (2) infinite loop, or (3) NULL pointer dereference. Family: unix Class: vulnerability Status: Reference(s): CVE-2013-1438 Platform(s): Ubuntu 17.10 Product(s): Definition Synopsis Ubuntu 17.10 (artful) is installed. AND Package Information NOT While related to the CVE in some way, the 'darktable' package in artful is not affected (note: '2.0.3-1'). OR The vulnerability of the 'dcraw' package in artful is not known (status: 'needs-triage'). It is pending evaluation. OR NOT While related to the CVE in some way, the 'exactimage' package in artful is not affected (note: '0.8.9-3build1'). OR The 'libraw' package in artful was vulnerable but has been fixed (note: '0.15.3-1ubuntu1'). OR The vulnerability of the 'rawtherapee' package in artful is not known (status: 'needs-triage'). It is pending evaluation. OR The 'ufraw' package in artful was vulnerable but has been fixed (note: '0.19.2-2ubuntu1').
BACK