Oval Definition:	oval:com.ubuntu.xenial:def:20178310000
Revision Date: 2017-05-23 Version: 1 Title: CVE-2017-8310 on Ubuntu 16.04 LTS (xenial) - medium. Description: Heap out-of-bound read in CreateHtmlSubtitle in VideoLAN VLC 2.2.x due to missing check of string termination allows attackers to read data beyond allocated memory and potentially crash the process (causing a denial of service) via a crafted subtitles file. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-8310 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND The 'vlc' package in xenial was vulnerable but has been fixed (note: '2.2.2-5ubuntu0.16.04.3').
BACK