Oval Definition:oval:com.ubuntu.xenial:def:20165637000
Revision Date:2016-07-15Version:1
Title:CVE-2016-5637 on Ubuntu 16.04 LTS (xenial) - medium.
Description:The restore_tqb_pixels function in libbpg 0.9.5 through 0.9.7 mishandles the transquant_bypass_enable_flag value, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted BPG image, related to a "type confusion" issue.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2016-5637
Platform(s):Ubuntu 16.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 16.04 LTS (xenial) is installed.
  • AND Package Information
  • NOT While related to the CVE in some way, the 'chromium-browser' package in xenial is not affected (note: 'code not present').
  • OR NOT While related to the CVE in some way, the 'ffmpeg' package in xenial is not affected (note: '2.6').
  • OR The vulnerability of the 'gst-libav1.0' package in xenial is not known (status: 'needs-triage'). It is pending evaluation.
  • OR NOT While related to the CVE in some way, the 'oxide-qt' package in xenial is not affected (note: 'code not present').
  • OR NOT While related to the CVE in some way, the 'vlc' package in xenial is not affected (note: 'code not present').
  • BACK