Oval Definition:	oval:com.ubuntu.xenial:def:201799930000000
Revision Date: 2017-06-28 Version: 1 Title: CVE-2017-9993 on Ubuntu 16.04 LTS (xenial) - medium. Description: FFmpeg before 2.8.12, 3.0.x and 3.1.x before 3.1.9, 3.2.x before 3.2.6, and 3.3.x before 3.3.2 does not properly restrict HTTP Live Streaming filename extensions and demuxer names, which allows attackers to read arbitrary files via crafted playlist data. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-9993 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND ffmpeg package in xenial was vulnerable but has been fixed (note: '7:2.8.14-0ubuntu0.16.04.1').
BACK