Oval Definition:	oval:com.ubuntu.trusty:def:20163981000
Revision Date: 2016-04-13 Version: 1 Title: CVE-2016-3981 on Ubuntu 14.04 LTS (trusty) - medium. Description: Heap-based buffer overflow in the bmp_read_rows function in pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image file. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-3981 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'optipng' package in trusty was vulnerable but has been fixed (note: '0.6.4-1ubuntu0.14.04.1').
BACK