Oval Definition:	oval:com.ubuntu.cosmic:def:2017181890000000
Revision Date: 2018-02-15 Version: 1 Title: CVE-2017-18189 on Ubuntu 18.10 (cosmic) - medium. Description: In the startread function in xa.c in Sound eXchange (SoX) through 14.4.2, a corrupt header specifying zero channels triggers an infinite loop with a resultant NULL pointer dereference, which may allow a remote attacker to cause a denial-of-service. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-18189 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND sox package in cosmic, is related to the CVE in some way and has been fixed (note: '14.4.2-3').
BACK