Oval Definition:	oval:com.ubuntu.trusty:def:20166888000
Revision Date: 2016-12-09 Version: 1 Title: CVE-2016-6888 on Ubuntu 14.04 LTS (trusty) - low. Description: Integer overflow in the net_tx_pkt_init function in hw/net/net_tx_pkt.c in QEMU (aka Quick Emulator) allows local guest OS administrators to cause a denial of service (QEMU process crash) via the maximum fragmentation count, which triggers an unchecked multiplication and NULL pointer dereference. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-6888 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'qemu' package in trusty was vulnerable but has been fixed (note: '2.0.0+dfsg-2ubuntu1.30').
BACK