Oval Definition:oval:com.ubuntu.bionic:def:20183847000
Revision Date:2018-08-01Version:1
Title:CVE-2018-3847 on Ubuntu 18.04 LTS (bionic) - medium.
Description:Multiple exploitable buffer overflow vulnerabilities exist in image parsing functionality of the CFITSIO library version 3.42. Specially crafted images parsed via the library, can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-3847
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND The vulnerability of the 'cfitsio' package in bionic is not known (status: 'needs-triage'). It is pending evaluation.
    • BACK