Oval Definition:	oval:com.ubuntu.xenial:def:20177853000
Revision Date: 2017-04-13 Version: 1 Title: CVE-2017-7853 on Ubuntu 16.04 LTS (xenial) - medium. Description: In libosip2 in GNU oSIP 4.1.0 and 5.0.0, a malformed SIP message can lead to a heap buffer overflow in the msg_osip_body_parse() function defined in osipparser2/osip_message_parse.c, resulting in a remote DoS. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-7853 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND The 'libosip2' package in xenial was vulnerable but has been fixed (note: '4.1.0-2+deb8u1build0.16.04.1').
BACK