Oval Definition:	oval:com.ubuntu.precise:def:20154475000
Revision Date: 2015-08-15 Version: 1 Title: CVE-2015-4475 on Ubuntu 12.04 LTS (precise) - medium. Description: The mozilla::AudioSink function in Mozilla Firefox before 40.0 and Firefox ESR 38.x before 38.2 mishandles inconsistent sample formats within MP3 audio data, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds read) via a malformed file. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-4475 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'firefox' package in precise was vulnerable but has been fixed (note: '40.0+build4-0ubuntu0.12.04.1').
BACK