OVAL Reference oval:com.ubuntu.precise:def:20152738000

Oval Definition:

oval:com.ubuntu.precise:def:20152738000

Revision Date:	2015-07-05	Version:	1
Title:	CVE-2015-2738 on Ubuntu 12.04 LTS (precise) - medium.
Description:	The YCbCrImageDataDeserializer::ToDataSourceSurface function in the YCbCr implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from uninitialized memory locations, which has unspecified impact and attack vectors.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2015-2738
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'firefox' package in precise was vulnerable but has been fixed (note: '39.0+build5-0ubuntu0.12.04.2'). OR The 'thunderbird' package in precise was vulnerable but has been fixed (note: '1:31.8.0+build1-0ubuntu0.12.04.1').