Oval Definition:	oval:com.ubuntu.xenial:def:20142907000
Revision Date: 2014-04-24 Version: 1 Title: CVE-2014-2907 on Ubuntu 16.04 LTS (xenial) - medium. Description: The srtp_add_address function in epan/dissectors/packet-rtp.c in the RTP dissector in Wireshark 1.10.x before 1.10.7 does not properly update SRTP conversation data, which allows remote attackers to cause a denial of service (application crash) via a crafted packet. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-2907 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND The 'wireshark' package in xenial was vulnerable but has been fixed (note: '2.6.3-1~ubuntu16.04.1').
BACK