Oval Definition:
oval:com.ubuntu.cosmic:def:20162226000
Revision Date
:
2017-02-24
Version
:
1
Title
:
CVE-2016-2226 on Ubuntu 18.10 (cosmic) - medium.
Description
:
Integer overflow in the string_appends function in cplus-dem.c in libiberty allows remote attackers to execute arbitrary code via a crafted executable, which triggers a buffer overflow.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2016-2226
Platform(s)
:
Ubuntu 18.10
Product(s)
:
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed.
AND
Package Information
NOT
While related to the CVE in some way, the 'binutils' package in cosmic is not affected (note: '2.28-3ubuntu1').
OR
The 'binutils-h8300-hms' package in cosmic is affected and needs fixing.
OR
NOT
While related to the CVE in some way, the 'gcc-arm-none-eabi' package in cosmic is not affected.
OR
The 'gcc-h8300-hms' package in cosmic is affected and needs fixing.
OR
NOT
While related to the CVE in some way, the 'gdb' package in cosmic is not affected (note: '7.99.90.20170502-0ubuntu1').
OR
NOT
While related to the CVE in some way, the 'ht' package in cosmic is not affected (note: '2.1.0+repack1-1').
OR
NOT
While related to the CVE in some way, the 'libiberty' package in cosmic is not affected (note: '20161220-1').
OR
The 'nescc' package in cosmic is affected and needs fixing.
OR
The 'sdcc' package in cosmic is affected and needs fixing.
OR
NOT
While related to the CVE in some way, the 'valgrind' package in cosmic is not affected (note: '1:3.12.0-1.1ubuntu1').
BACK