Oval Definition:	oval:com.ubuntu.xenial:def:201818584000
Revision Date: 2018-10-22 Version: 1 Title: CVE-2018-18584 on Ubuntu 16.04 LTS (xenial) - medium. Description: In mspack/cab.h in libmspack before 0.8alpha and cabextract before 1.8, the CAB block input buffer is one byte too small for the maximal Quantum block, leading to an out-of-bounds write. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-18584 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information The vulnerability of the 'cabextract' package in xenial is not known (status: 'needs-triage'). It is pending evaluation. OR NOT While related to the CVE in some way, the 'clamav' package in xenial is not affected (note: 'uses system libmspack'). OR The 'libmspack' package in xenial was vulnerable but has been fixed (note: '0.5-1ubuntu0.16.04.3').
BACK