Oval Definition:oval:com.ubuntu.artful:def:20165637000
Revision Date:2016-07-15Version:1
Title:CVE-2016-5637 on Ubuntu 17.10 (artful) - medium.
Description:The restore_tqb_pixels function in libbpg 0.9.5 through 0.9.7 mishandles the transquant_bypass_enable_flag value, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted BPG image, related to a "type confusion" issue.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2016-5637
Platform(s):Ubuntu 17.10
Product(s):
Definition Synopsis
  • Ubuntu 17.10 (artful) is installed.
  • AND Package Information
  • NOT While related to the CVE in some way, the 'chromium-browser' package in artful is not affected (note: 'code not present').
  • OR The vulnerability of the 'ffmpeg' package in artful is not known (status: 'needs-triage'). It is pending evaluation.
  • OR The vulnerability of the 'gst-libav1.0' package in artful is not known (status: 'needs-triage'). It is pending evaluation.
  • OR NOT While related to the CVE in some way, the 'oxide-qt' package in artful is not affected (note: 'code not present').
  • OR The 'vlc' package in artful is affected and needs fixing.
  • BACK