Oval Definition:
oval:com.ubuntu.xenial:def:201861560000000
Revision Date
:
2019-06-27
Version
:
1
Title
:
CVE-2018-6156 on Ubuntu 16.04 LTS (xenial) - high.
Description
:
Incorect derivation of a packet length in WebRTC in Google Chrome prior to 68.0.3440.75 allowed a remote attacker to potentially exploit heap corruption via a crafted video file.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2018-6156
Platform(s)
:
Ubuntu 16.04 LTS
Product(s)
:
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed.
AND
Package Information
chromium-browser package in xenial was vulnerable but has been fixed (note: '68.0.3440.75-0ubuntu0.16.04.1').
OR
firefox package in xenial was vulnerable but has been fixed (note: '70.0+build2-0ubuntu0.16.04.1').
OR
oxide-qt: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'Ubuntu touch end-of-life').
BACK