Oval Definition:	oval:com.ubuntu.bionic:def:20131438000
Revision Date: 2014-01-19 Version: 1 Title: CVE-2013-1438 on Ubuntu 18.04 LTS (bionic) - medium. Description: Unspecified vulnerability in dcraw 0.8.x through 0.8.9, as used in libraw, ufraw, shotwell, and other products, allows context-dependent attackers to cause a denial of service via a crafted photo file that triggers a (1) divide-by-zero, (2) infinite loop, or (3) NULL pointer dereference. Family: unix Class: vulnerability Status: Reference(s): CVE-2013-1438 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information NOT While related to the CVE in some way, the 'darktable' package in bionic is not affected (note: '2.0.3-1'). OR The 'dcraw' package in bionic is affected and needs fixing. OR NOT While related to the CVE in some way, the 'exactimage' package in bionic is not affected (note: '0.8.9-3build1'). OR The 'libraw' package in bionic was vulnerable but has been fixed (note: '0.15.3-1ubuntu1'). OR The 'rawtherapee' package in bionic is affected and needs fixing. OR The 'ufraw' package in bionic was vulnerable but has been fixed (note: '0.19.2-2ubuntu1').
BACK