Oval Definition:oval:com.ubuntu.bionic:def:201715650000
Revision Date:2017-10-19Version:1
Title:CVE-2017-15650 on Ubuntu 18.04 LTS (bionic) - medium.
Description:musl libc before 1.1.17 has a buffer overflow via crafted DNS replies because dns_parse_callback in network/lookup_name.c does not restrict the number of addresses, and thus an attacker can provide an unexpected number by sending A records in a reply to an AAAA query.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-15650
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND NOT While related to the CVE in some way, the 'musl' package in bionic is not affected (note: '1.1.19-1').
  • BACK