Oval Definition:	oval:com.ubuntu.precise:def:20178419000
Revision Date: 2017-05-02 Version: 1 Title: CVE-2017-8419 on Ubuntu 12.04 LTS (precise) - medium. Description: LAME through 3.99.5 relies on the signed integer data type for values in a WAV or AIFF header, which allows remote attackers to cause a denial of service (stack-based buffer overflow or heap-based buffer overflow) or possibly have unspecified other impact via a crafted file, as demonstrated by mishandling of num_channels. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-8419 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The vulnerability of the 'lame' package in precise is not known (status: 'needs-triage'). It is pending evaluation.
BACK