Oval Definition:	oval:com.ubuntu.bionic:def:201512830000000
Revision Date: 2015-07-23 Version: 1 Title: CVE-2015-1283 on Ubuntu 18.04 LTS (bionic) - medium. Description: Multiple integer overflows in the XML_GetBuffer function in Expat through 2.1.0, as used in Google Chrome before 44.0.2403.89 and other products, allow remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted XML data, a related issue to CVE-2015-2716. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-1283 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information apache2: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled'). OR apr-util: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled'). OR cadaver package in bionic is affected and needs fixing. OR chromium-browser package in bionic was vulnerable but has been fixed (note: '44.0.2403.89-0ubuntu1.1195'). OR cmake: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled'). OR coin3 package in bionic is affected and needs fixing. OR expat package in bionic, is related to the CVE in some way and has been fixed (note: '2.1.0-7'). OR ghostscript: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled'). OR matanza package in bionic is affected and needs fixing. OR smart: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled'). OR swish-e package in bionic is affected and needs fixing. OR texlive-bin: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled'). OR vnc4 package in bionic is affected and needs fixing. OR xmlrpc-c package in bionic is affected and needs fixing.
BACK