Oval Definition:oval:com.ubuntu.trusty:def:20181000639000
Revision Date:2018-08-20Version:1
Title:CVE-2018-1000639 on Ubuntu 14.04 LTS (trusty) - medium.
Description:LatexDraw version <=4.0 contains a XML External Entity (XXE) vulnerability in SVG parsing functionality that can result in disclosure of data, server side request forgery, port scanning, possible rce. This attack appear to be exploitable via Specially crafted SVG file.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-1000639
Platform(s):Ubuntu 14.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 14.04 LTS (trusty) is installed.
  • AND The vulnerability of the 'latexdraw' package in trusty is not known (status: 'needs-triage'). It is pending evaluation.
    • BACK