Oval Definition:
oval:com.ubuntu.artful:def:20147947000
Revision Date
:
2015-01-22
Version
:
1
Title
:
CVE-2014-7947 on Ubuntu 17.10 (artful) - medium.
Description
:
OpenJPEG before r2944, as used in PDFium in Google Chrome before 40.0.2214.91, allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PDF document, related to j2k.c, jp2.c, pi.c, t1.c, t2.c, and tcd.c.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2014-7947
Platform(s)
:
Ubuntu 17.10
Product(s)
:
Definition Synopsis
Ubuntu 17.10 (artful) is installed.
AND
Package Information
The 'chromium-browser' package in artful was vulnerable but has been fixed (note: '40.0.2214.94-0ubuntu1.1120').
OR
NOT
While related to the CVE in some way, the 'gdcm' package in artful is not affected (note: 'uses system openjpeg').
OR
The vulnerability of the 'insighttoolkit4' package in artful is not known (status: 'needs-triage'). It is pending evaluation.
OR
The 'openjpeg2' package in artful is affected and needs fixing.
OR
NOT
While related to the CVE in some way, the 'oxide-qt' package in artful is not affected.
BACK