Oval Definition:	oval:com.ubuntu.xenial:def:20091182000
Revision Date: 2009-04-23 Version: 1 Title: CVE-2009-1182 on Ubuntu 16.04 LTS (xenial) - medium. Description: Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allow remote attackers to execute arbitrary code via a crafted PDF file. Family: unix Class: vulnerability Status: Reference(s): CVE-2009-1182 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information NOT While related to the CVE in some way, the 'cups' package in xenial is not affected. OR NOT While related to the CVE in some way, the 'evince' package in xenial is not affected (note: 'linked to poppler'). OR NOT While related to the CVE in some way, the 'ipe' package in xenial is not affected (note: 'uses system pdflatex'). OR The vulnerability of the 'libextractor' package in xenial is not known (status: 'needs-triage'). It is pending evaluation. OR The 'poppler' package in xenial was vulnerable but has been fixed (note: '0.10.5-1ubuntu2'). OR NOT While related to the CVE in some way, the 'texlive-bin' package in xenial is not affected (note: 'linked to poppler'). OR NOT While related to the CVE in some way, the 'xpdf' package in xenial is not affected (note: '3.02-2').
BACK