OVAL Reference oval:com.ubuntu.xenial:def:201656880000000

Oval Definition:

oval:com.ubuntu.xenial:def:201656880000000

Revision Date:	2016-12-13	Version:	1
Title:	CVE-2016-5688 on Ubuntu 16.04 LTS (xenial) - medium.
Description:	The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer overflow in the SetPixelIndex function or an invalid write operation in the (2) ScaleCharToQuantum or (3) SetPixelIndex functions.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2016-5688
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND imagemagick package in xenial was vulnerable but has been fixed (note: '8:6.8.9.9-7ubuntu5.2').