Oval Definition:	oval:com.ubuntu.cosmic:def:201976630000000
Revision Date: 2019-02-09 Version: 1 Title: CVE-2019-7663 on Ubuntu 18.10 (cosmic) - low. Description: An Invalid Address dereference was discovered in TIFFWriteDirectoryTagTransferfunction in libtiff/tif_dirwrite.c in LibTIFF 4.0.10, affecting the cpSeparateBufToContigBuf function in tiffcp.c. Remote attackers could leverage this vulnerability to cause a denial-of-service via a crafted tiff file. This is different from CVE-2018-12900. Family: unix Class: vulnerability Status: Reference(s): CVE-2019-7663 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND Package Information openjpeg2: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR qt4-x11: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR qtimageformats-opensource-src: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR qtwebengine-opensource-src: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR texmaker: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life'). OR tiff package in cosmic was vulnerable but has been fixed (note: '4.0.9-6ubuntu0.2').
BACK