Oval Definition:	oval:com.ubuntu.bionic:def:201814400000
Revision Date: 2018-08-28 Version: 1 Title: CVE-2018-14400 on Ubuntu 18.04 LTS (bionic) - medium. Description: In PLY (aka Python Lex-Yacc) 3.11, as used in pycparser and other products, a pickle.load call (within the read_pickle function of the LRTable class in yacc.py) on imported data allows remote attackers to execute arbitrary code via a crafted .pickle file, as demonstrated by Python code that contains an os.system call. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-14400 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND Package Information The vulnerability of the 'ply' package in bionic is not known (status: 'needs-triage'). It is pending evaluation. OR NOT While related to the CVE in some way, the 'pycparser' package in bionic is not affected.
BACK