Oval Definition:	oval:com.ubuntu.xenial:def:2018156070000000
Revision Date: 2018-08-21 Version: 1 Title: CVE-2018-15607 on Ubuntu 16.04 LTS (xenial) - low. Description: In ImageMagick 7.0.8-11 Q16, a tiny input file 0x50 0x36 0x36 0x36 0x36 0x4c 0x36 0x38 0x36 0x36 0x36 0x36 0x36 0x36 0x1f 0x35 0x50 0x00 can result in a hang of several minutes during which CPU and memory resources are consumed until ultimately an attempted large memory allocation fails. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-15607 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND imagemagick package in xenial was vulnerable but has been fixed (note: '8:6.8.9.9-7ubuntu5.14').
BACK