OVAL Reference oval:com.ubuntu.bionic:def:201819655000

Oval Definition:

oval:com.ubuntu.bionic:def:201819655000

Revision Date:	2018-11-29	Version:	1
Title:	CVE-2018-19655 on Ubuntu 18.04 LTS (bionic) - medium.
Description:	A stack-based buffer overflow in the find_green() function of dcraw through 9.28, as used in ufraw-batch and many other products, may allow a remote attacker to cause a control-flow hijack, denial-of-service, or unspecified other impact via a maliciously crafted raw photo file.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-19655
Platform(s):	Ubuntu 18.04 LTS	Product(s):
Definition Synopsis
Ubuntu 18.04 LTS (bionic) is installed. AND Package Information The vulnerability of the 'dcraw' package in bionic is not known (status: 'needs-triage'). It is pending evaluation. OR The 'ufraw' package in bionic was vulnerable but has been fixed (note: '0.22-3.1~build0.18.04.1').