Oval Definition:	oval:com.ubuntu.trusty:def:20143640000
Revision Date: 2014-11-07 Version: 1 Title: CVE-2014-3640 on Ubuntu 14.04 LTS (trusty) - low. Description: The sosendto function in slirp/udp.c in QEMU before 2.1.2 allows local users to cause a denial of service (NULL pointer dereference) by sending a udp packet with a value of 0 in the source port and address, which triggers access of an uninitialized socket. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-3640 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'qemu' package in trusty was vulnerable but has been fixed (note: '2.0.0+dfsg-2ubuntu1.7').
BACK