Oval Definition:	oval:com.ubuntu.cosmic:def:2017150560000000
Revision Date: 2017-10-06 Version: 1 Title: CVE-2017-15056 on Ubuntu 18.10 (cosmic) - low. Description: p_lx_elf.cpp in UPX 3.94 mishandles ELF headers, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted binary file, as demonstrated by an Invalid Pointer Read in PackLinuxElf64::unpack(). Family: unix Class: vulnerability Status: Reference(s): CVE-2017-15056 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND upx-ucl package in cosmic, is related to the CVE in some way and has been fixed (note: '3.94-4').
BACK