Oval Definition:	oval:com.ubuntu.bionic:def:2019110350000000
Revision Date: 2019-04-18 Version: 1 Title: CVE-2019-11035 on Ubuntu 18.04 LTS (bionic) - medium. Description: When processing certain files, PHP EXIF extension in versions 7.1.x below 7.1.28, 7.2.x below 7.2.17 and 7.3.x below 7.3.4 can be caused to read past allocated buffer in exif_iif_add_value function. This may lead to information disclosure or crash. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-11035 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND php7.2 package in bionic was vulnerable but has been fixed (note: '7.2.17-0ubuntu0.18.04.1').
BACK