Oval Definition:	oval:com.ubuntu.trusty:def:20175884000
Revision Date: 2017-02-28 Version: 1 Title: CVE-2017-5884 on Ubuntu 14.04 LTS (trusty) - medium. Description: gtk-vnc before 0.7.0 does not properly check boundaries of subrectangle-containing tiles, which allows remote servers to execute arbitrary code via the src x, y coordinates in a crafted (1) rre, (2) hextile, or (3) copyrect tile. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-5884 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND The 'gtk-vnc' package in trusty was vulnerable but has been fixed (note: '0.5.3-0ubuntu2.1').
BACK