Oval Definition:	oval:com.ubuntu.xenial:def:20167395000
Revision Date: 2016-09-11 Version: 1 Title: CVE-2016-7395 on Ubuntu 16.04 LTS (xenial) - medium. Description: SkPath.cpp in Skia, as used in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, does not properly validate the return values of ChopMonoAtY calls, which allows remote attackers to cause a denial of service (uninitialized memory access and application crash) or possibly have unspecified other impact via crafted graphics data. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-7395 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information While related to the CVE in some way, a decision has been made to ignore it (note: 'abandoned'). OR The 'chromium-browser' package in xenial was vulnerable but has been fixed (note: '53.0.2785.143-0ubuntu0.16.04.1.1254'). OR NOT While related to the CVE in some way, the 'firefox' package in xenial is not affected (note: '50.1.0+build2-0ubuntu0.16.04.1'). OR The 'oxide-qt' package in xenial was vulnerable but has been fixed (note: '1.17.7-0ubuntu0.16.04.1'). OR NOT While related to the CVE in some way, the 'thunderbird' package in xenial is not affected. OR The vulnerability of the 'wine-gecko2.21' package in xenial is not known (status: 'needs-triage'). It is pending evaluation.
BACK