OVAL Reference oval:com.ubuntu.xenial:def:2017137220000000

Oval Definition:

oval:com.ubuntu.xenial:def:2017137220000000

Revision Date:	2017-10-11	Version:	1
Title:	CVE-2017-13722 on Ubuntu 16.04 LTS (xenial) - medium.
Description:	In the pcfGetProperties function in bitmap/pcfread.c in libXfont through 1.5.2 and 2.x before 2.0.2, a missing boundary check (for PCF files) could be used by local attackers authenticated to an Xserver for a buffer over-read, for information disclosure or a crash of the X server.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2017-13722
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND Package Information libxfont package in xenial was vulnerable but has been fixed (note: '1:1.5.1-1ubuntu0.16.04.3'). OR libxfont2 package in xenial was vulnerable but has been fixed (note: '1:2.0.1-3~ubuntu16.04.2').