OVAL Reference oval:com.ubuntu.cosmic:def:201131700000000

Oval Definition:

oval:com.ubuntu.cosmic:def:201131700000000

Revision Date:	2011-08-19	Version:	1
Title:	CVE-2011-3170 on Ubuntu 18.10 (cosmic) - medium.
Description:	The gif_read_lzw function in filter/image-gif.c in CUPS 1.4.8 and earlier does not properly handle the first code word in an LZW stream, which allows remote attackers to trigger a heap-based buffer overflow, and possibly execute arbitrary code, via a crafted stream, a different vulnerability than CVE-2011-2896.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2011-3170
Platform(s):	Ubuntu 18.10	Product(s):
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed. AND Package Information cups package in cosmic, is related to the CVE in some way and has been fixed (note: '1.5.0-8'). OR swi-prolog: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').