Oval Definition:	oval:com.ubuntu.precise:def:20146040000
Revision Date: 2014-12-05 Version: 1 Title: CVE-2014-6040 on Ubuntu 12.04 LTS (precise) - low. Description: GNU C Library (aka glibc) before 2.20 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via a multibyte character value of "0xffff" to the iconv function when converting (1) IBM933, (2) IBM935, (3) IBM937, (4) IBM939, or (5) IBM1364 encoded data to UTF-8. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-6040 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'eglibc' package in precise was vulnerable but has been fixed (note: '2.15-0ubuntu10.9').
BACK