Oval Definition:	oval:com.ubuntu.cosmic:def:201784190000000
Revision Date: 2017-05-02 Version: 1 Title: CVE-2017-8419 on Ubuntu 18.10 (cosmic) - medium. Description: LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service (stack-based buffer overflow or heap-based buffer overflow) or possibly have unspecified other impact via a crafted file, as demonstrated by mishandling of num_channels. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-8419 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND lame package in cosmic, is related to the CVE in some way and has been fixed (note: '3.100-2').
BACK