Oval Definition:
oval:com.ubuntu.cosmic:def:2018183560000000
Revision Date
:
2018-12-11
Version
:
1
Title
:
CVE-2018-18356 on Ubuntu 18.10 (cosmic) - medium.
Description
:
An integer overflow in path handling lead to a use after free in Skia in Google Chrome prior to 71.0.3578.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2018-18356
Platform(s)
:
Ubuntu 18.10
Product(s)
:
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed.
AND
Package Information
chromium-browser package in cosmic was vulnerable but has been fixed (note: '71.0.3578.80-0ubuntu0.18.10.1').
OR
firefox package in cosmic was vulnerable but has been fixed (note: '65.0.1+build2-0ubuntu0.18.10.1').
OR
thunderbird package in cosmic was vulnerable but has been fixed (note: '1:60.5.1+build2-0ubuntu0.18.10.1').
BACK