Oval Definition:	oval:com.ubuntu.bionic:def:2018105490000000
Revision Date: 2018-04-29 Version: 1 Title: CVE-2018-10549 on Ubuntu 18.04 LTS (bionic) - medium. Description: An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exif_read_data in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exif_iif_add_value mishandles the case of a MakerNote that lacks a final '\0' character. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-10549 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND php7.2 package in bionic was vulnerable but has been fixed (note: '7.2.5-0ubuntu0.18.04.1').
BACK