Oval Definition:	oval:com.ubuntu.trusty:def:201717670000
Revision Date: 2017-12-15 Version: 1 Title: CVE-2017-17670 on Ubuntu 14.04 LTS (trusty) - medium. Description: In VideoLAN VLC media player through 2.2.8, there is a type conversion vulnerability in modules/demux/mp4/libmp4.c in the MP4 demux module leading to a invalid free, because the type of a box may be changed between a read operation and a free operation. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-17670 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'vlc' package in trusty is affected, but a decision has been made to defer addressing it (note: '2019-04-23').
BACK