It was discovered that VTK incorrectly handled certain XML files in the embedded Expat library. An attacker could possibly use this issue to cause a denial of service or expose sensitive information.
5.8.0-14.1ubuntu3+esm15.10.1+dfsg-2.1ubuntu0.1~esm1