Oval Definition:	oval:com.ubuntu.xenial:def:2018133020000000
Revision Date: 2018-07-05 Version: 1 Title: CVE-2018-13302 on Ubuntu 16.04 LTS (xenial) - medium. Description: In FFmpeg 4.0.1, improper handling of frame types (other than EAC3_FRAME_TYPE_INDEPENDENT) that have multiple independent substreams in the handle_eac3 function in libavformat/movenc.c may trigger an out-of-array access while converting a crafted AVI file to MPEG4, leading to a denial of service or possibly unspecified other impact. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-13302 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information chromium-browser: while related to the CVE in some way, a decision has been made to ignore this issue. OR ffmpeg package in xenial was vulnerable but has been fixed (note: '7:2.8.15-0ubuntu0.16.04.1'). OR gst-libav1.0 package in xenial is affected and may need fixing. OR kino package in xenial is affected and may need fixing. OR mythtv package in xenial is affected and may need fixing. OR oxide-qt: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'Ubuntu touch end-of-life'). OR vice package in xenial is affected and may need fixing.
BACK