OVAL Reference oval:com.ubuntu.xenial:def:20185711000

Oval Definition:

oval:com.ubuntu.xenial:def:20185711000

Revision Date:	2018-01-16	Version:	1
Title:	CVE-2018-5711 on Ubuntu 16.04 LTS (xenial) - low.
Description:	gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.33, 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1, has an integer signedness error that leads to an infinite loop via a crafted GIF file, as demonstrated by a call to the imagecreatefromgif or imagecreatefromstring PHP function. This is related to GetCode_ and gdImageCreateFromGifCtx.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-5711
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND Package Information The 'libgd2' package in xenial was vulnerable but has been fixed (note: '2.1.1-4ubuntu0.16.04.10'). OR NOT While related to the CVE in some way, the 'php7.0' package in xenial is not affected (note: 'uses system gd').