Oval Definition:	oval:com.ubuntu.bionic:def:20199210000
Revision Date: 2019-02-27 Version: 1 Title: CVE-2019-9210 on Ubuntu 18.04 LTS (bionic) - medium. Description: In AdvanceCOMP 2.1, png_compress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size, which results in an attempted memcpy to write into a buffer that is too small. (There is also a heap-based buffer over-read.) Family: unix Class: vulnerability Status: Reference(s): CVE-2019-9210 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND The 'advancecomp' package in bionic was vulnerable but has been fixed (note: '2.1-1ubuntu0.18.04.1').
BACK