Oval Definition:
oval:com.ubuntu.artful:def:201812265000
Revision Date
:
2018-06-13
Version
:
1
Title
:
CVE-2018-12265 on Ubuntu 17.10 (artful) - low.
Description
:
Exiv2 0.26 has an integer overflow in the LoaderExifJpeg class in preview.cpp, leading to an out-of-bounds read in Exiv2::MemIo::read in basicio.cpp.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2018-12265
Platform(s)
:
Ubuntu 17.10
Product(s)
:
Definition Synopsis
Ubuntu 17.10 (artful) is installed.
AND
The 'exiv2' package in artful was vulnerable but has been fixed (note: '0.25-3.1ubuntu0.17.10.1').
BACK