OVAL Reference oval:com.ubuntu.artful:def:20179227000

Oval Definition:

oval:com.ubuntu.artful:def:20179227000

Revision Date:	2017-05-24	Version:	1
Title:	CVE-2017-9227 on Ubuntu 17.10 (artful) - medium.
Description:	An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A stack out-of-bounds read occurs in mbc_enc_len() during regular expression searching. Invalid handling of reg->dmin in forward_search_range() could result in an invalid pointer dereference, as an out-of-bounds read from a stack buffer.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2017-9227
Platform(s):	Ubuntu 17.10	Product(s):
Definition Synopsis
Ubuntu 17.10 (artful) is installed. AND Package Information The 'libonig' package in artful is affected and needs fixing. OR The 'php7.1' package in artful was vulnerable but has been fixed (note: '7.1.8-1ubuntu1').