Oval Definition:	oval:com.ubuntu.cosmic:def:2018133020000000
Revision Date: 2018-07-05 Version: 1 Title: CVE-2018-13302 on Ubuntu 18.10 (cosmic) - medium. Description: In FFmpeg 4.0.1, improper handling of frame types (other than EAC3_FRAME_TYPE_INDEPENDENT) that have multiple independent substreams in the handle_eac3 function in libavformat/movenc.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to a denial of service or possibly unspecified other impact. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-13302 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND Package Information chromium-browser: while related to the CVE in some way, a decision has been made to ignore this issue. OR ffmpeg package in cosmic was vulnerable but has been fixed (note: '7:4.0.2-1ubuntu6'). OR gst-libav1.0: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR kino: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR mythtv: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR vice: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
BACK