Oval Definition:	oval:com.ubuntu.bionic:def:201716357000
Revision Date: 2017-11-01 Version: 1 Title: CVE-2017-16357 on Ubuntu 18.04 LTS (bionic) - untriaged. Description: In radare 2.0.1, a memory corruption vulnerability exists in store_versioninfo_gnu_verdef() and store_versioninfo_gnu_verneed() in libr/bin/format/elf/elf.c, as demonstrated by an invalid free. This error is due to improper sh_size validation when allocating memory. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-16357 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND NOT While related to the CVE in some way, the 'radare2' package in bionic is not affected (note: '2.3.0+dfsg-2').
BACK