Oval Definition:oval:com.ubuntu.bionic:def:2018208430000000
Revision Date:2019-06-24Version:1
Title:CVE-2018-20843 on Ubuntu 18.04 LTS (bionic) - low.
Description:In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks).
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-20843
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND Package Information
  • apache2: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled').
  • OR apr-util: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled').
  • OR cadaver package in bionic is affected and may need fixing.
  • OR cmake: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled').
  • OR coin3 package in bionic is affected and needs fixing.
  • OR expat package in bionic was vulnerable but has been fixed (note: '2.2.5-3ubuntu0.1').
  • OR ghostscript: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled').
  • OR matanza package in bionic is affected and may need fixing.
  • OR smart: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled').
  • OR swish-e package in bionic is affected and may need fixing.
  • OR texlive-bin: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'code-not-compiled').
  • OR vnc4 package in bionic is affected and needs fixing.
  • OR xmlrpc-c package in bionic is affected and may need fixing.
  • OR xotcl package in bionic is affected and may need fixing.
  • BACK