Oval Definition:	oval:com.ubuntu.xenial:def:201728870000000
Revision Date: 2017-10-11 Version: 1 Title: CVE-2017-2887 on Ubuntu 16.04 LTS (xenial) - medium. Description: An exploitable buffer overflow vulnerability exists in the XCF property handling functionality of SDL_image 2.0.1. A specially crafted xcf file can cause a stack-based buffer overflow resulting in potential code execution. An attacker can provide a specially crafted XCF file to trigger this vulnerability. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-2887 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information libsdl2-image package in xenial was vulnerable but has been fixed (note: '2.0.1+dfsg-2+deb9u1build0.16.04.1'). OR sdl-image1.2 package in xenial was vulnerable but has been fixed (note: '1.2.12-5+deb9u1build0.16.04.1').
BACK