USN-4852-1

Details

It was discovered that VTK incorrectly handled certain XML files in the embedded Expat library. An attacker could possibly use this issue to cause a denial of service or expose sensitive information.

Affected Packages

Ubuntu:Pro:14.04:LTSvtk

Fixed in:

5.8.0-14.1ubuntu3+esm1

Ubuntu:Pro:16.04:LTSvtk

Fixed in:

5.10.1+dfsg-2.1ubuntu0.1~esm1

References

REPORThttps://ubuntu.com/security/CVE-2018-20843 REPORThttps://ubuntu.com/security/CVE-2019-15903 ADVISORYhttps://ubuntu.com/security/notices/USN-4852-1

USN-4852-1

Details

Affected Packages

References

Upstream

Ecosystems

Timeline