Oval Definition:	oval:com.ubuntu.trusty:def:20168859000
Revision Date: 2017-02-13 Version: 1 Title: CVE-2016-8859 on Ubuntu 14.04 LTS (trusty) - medium. Description: Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-8859 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND Package Information The 'musl' package in trusty is affected and needs fixing. OR The 'tre' package in trusty was vulnerable but has been fixed (note: '0.8.0-3+deb7u1ubuntu1').
BACK