Oval Definition:	oval:com.ubuntu.cosmic:def:20113170000
Revision Date: 2011-08-19 Version: 1 Title: CVE-2011-3170 on Ubuntu 18.10 (cosmic) - medium. Description: The gif_read_lzw function in filter/image-gif.c in CUPS 1.4.8 and earlier does not properly handle the first code word in an LZW stream, which allows remote attackers to trigger a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted stream, a different vulnerability than CVE-2011-2896. Family: unix Class: vulnerability Status: Reference(s): CVE-2011-3170 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND Package Information NOT While related to the CVE in some way, the 'cups' package in cosmic is not affected (note: '1.5.0-8'). OR NOT While related to the CVE in some way, the 'gimp' package in cosmic is not affected. OR The 'swi-prolog' package in cosmic is affected and needs fixing.
BACK