Oval Definition:	oval:com.ubuntu.xenial:def:20153885000
Revision Date: 2015-05-19 Version: 1 Title: CVE-2015-3885 on Ubuntu 16.04 LTS (xenial) - negligible. Description: Integer overflow in the ljpeg_start function in dcraw 7.00 and earlier allows remote attackers to cause a denial of service (crash) via a crafted image, which triggers a buffer overflow, related to the len variable. Family: unix Class: vulnerability Status: Reference(s): CVE-2015-3885 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information NOT While related to the CVE in some way, the 'darktable' package in xenial is not affected (note: '1.6.8-1'). OR The 'dcraw' package in xenial is affected and needs fixing. OR NOT While related to the CVE in some way, the 'exactimage' package in xenial is not affected (note: '0.9.1-6'). OR NOT While related to the CVE in some way, the 'freeimage' package in xenial is not affected (note: '3.15.4-6'). OR The 'kodi' package in xenial is affected and needs fixing. OR NOT While related to the CVE in some way, the 'libraw' package in xenial is not affected (note: '0.17.1-1'). OR NOT While related to the CVE in some way, the 'rawtherapee' package in xenial is not affected (note: '4.2-4'). OR NOT While related to the CVE in some way, the 'ufraw' package in xenial is not affected (note: '0.20-3').
BACK