Oval Definition:	oval:com.ubuntu.bionic:def:201819974000
Revision Date: 2018-12-17 Version: 1 Title: CVE-2018-19974 on Ubuntu 18.04 LTS (bionic) - medium. Description: In YARA 3.8.1, bytecode in a specially crafted compiled rule can read uninitialized data from VM scratch memory in libyara/exec.c. This can allow attackers to discover addresses in the real stack (not the YARA virtual stack). Family: unix Class: vulnerability Status: Reference(s): CVE-2018-19974 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND The vulnerability of the 'yara' package in bionic is not known (status: 'needs-triage'). It is pending evaluation.
BACK