Oval Definition:	oval:com.ubuntu.xenial:def:2017149770000000
Revision Date: 2017-10-02 Version: 1 Title: CVE-2017-14977 on Ubuntu 16.04 LTS (xenial) - low. Description: The FoFiTrueType::getCFFBlock function in FoFiTrueType.cc in Poppler 0.59.0 has a NULL pointer dereference vulnerability due to lack of validation of a table pointer, which allows an attacker to launch a denial of service attack. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-14977 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND poppler package in xenial was vulnerable but has been fixed (note: '0.41.0-0ubuntu1.4').
BACK