Oval Definition:oval:com.ubuntu.cosmic:def:2017146850000000
Revision Date:2017-09-22Version:1
Title:CVE-2017-14685 on Ubuntu 18.10 (cosmic) - medium.
Description:Artifex MuPDF 1.11 allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .xps file, related to "Data from Faulting Address controls Branch Selection starting at mupdf+0x000000000016aa61" on Windows. This occurs because xps_load_links_in_glyphs in xps/xps-link.c does not verify that an xps font could be loaded.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2017-14685
Platform(s):Ubuntu 18.10
Product(s):
Definition Synopsis
  • Ubuntu 18.10 (cosmic) is installed.
  • AND mupdf package in cosmic, is related to the CVE in some way and has been fixed (note: '1.12.0+ds1-1').
  • BACK