Oval Definition:	oval:com.ubuntu.artful:def:201712762000
Revision Date: 2017-08-09 Version: 1 Title: CVE-2017-12762 on Ubuntu 17.10 (artful) - medium. Description: In /drivers/isdn/i4l/isdn_net.c: A user-controlled buffer is copied into a local buffer of constant size using strcpy without a length check which can cause a buffer overflow. This affects the Linux kernel 4.9-stable tree, 4.12-stable tree, 3.18-stable tree, and 4.4-stable tree. It was discovered that a buffer overflow existed in the ioctl handling code in the ISDN subsystem of the Linux kernel. A local attacker could use this to cause a denial of service (system crash) or possibly execute arbitrary code. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-12762 Platform(s): Ubuntu 17.10 Product(s): Definition Synopsis Ubuntu 17.10 (artful) is installed. AND Package Information NOT While related to the CVE in some way, the 'linux' package in artful is not affected (note: '4.12.0-11.12'). OR NOT While related to the CVE in some way, the 'linux-raspi2' package in artful is not affected (note: '4.13.0-1004.4'). OR The 'linux-snapdragon' package in artful was vulnerable but has been fixed (note: '4.4.0-1076.81').
BACK