OVAL Reference oval:com.ubuntu.cosmic:def:20175949000

Oval Definition:

oval:com.ubuntu.cosmic:def:20175949000

Revision Date:	2017-04-03	Version:	1
Title:	CVE-2017-5949 on Ubuntu 18.10 (cosmic) - medium.
Description:	JavaScriptCore in WebKit, as distributed in Safari Technology Preview Release 22, allows remote attackers to cause a denial of service (heap-based out-of-bounds write and application crash) or possibly have unspecified other impact via crafted JavaScript code that triggers access to red-zone memory locations, related to jit/ThunkGenerators.cpp, llint/LowLevelInterpreter32_64.asm, and llint/LowLevelInterpreter64.asm.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2017-5949
Platform(s):	Ubuntu 18.10	Product(s):
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed. AND Package Information The vulnerability of the 'qtwebkit-opensource-src' package in cosmic is not known (status: 'needs-triage'). It is pending evaluation. OR The vulnerability of the 'qtwebkit-source' package in cosmic is not known (status: 'needs-triage'). It is pending evaluation. OR NOT While related to the CVE in some way, the 'webkit2gtk' package in cosmic is not affected. OR The vulnerability of the 'webkitgtk' package in cosmic is not known (status: 'needs-triage'). It is pending evaluation.