Oval Definition:	oval:com.ubuntu.trusty:def:201816435000
Revision Date: 2018-09-03 Version: 1 Title: CVE-2018-16435 on Ubuntu 14.04 LTS (trusty) - medium. Description: Little CMS (aka Little Color Management System) 2.9 has an integer overflow in the AllocateDataSet function in cmscgats.c, leading to a heap-based buffer overflow in the SetData function via a crafted file in the second argument to cmsIT8LoadFromFile. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-16435 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND Package Information While related to the CVE in some way, a decision has been made to ignore it (note: 'no longer updated'). OR The vulnerability of the 'lcms' package in trusty is not known (status: 'needs-triage'). It is pending evaluation. OR The 'lcms2' package in trusty was vulnerable but has been fixed (note: '2.5-0ubuntu4.2'). OR While related to the CVE in some way, a decision has been made to ignore it (note: 'Ubuntu touch end-of-life').
BACK