Oval Definition:	oval:com.ubuntu.xenial:def:20172920000
Revision Date: 2017-10-05 Version: 1 Title: CVE-2017-2920 on Ubuntu 16.04 LTS (xenial) - medium. Description: An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code execution. An attacker can send a specific .SVG file to trigger this vulnerability. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-2920 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND NOT While related to the CVE in some way, the 'libofx' package in xenial is not affected.
BACK