Hi Joseph - thanks for the report. We are aware of this CVE and have triaged it in the Ubuntu CVE Tracker:
https://people.canonical.com/~ubuntu- security/cve/2016/CVE-2016-7953.html We have it rated as a 'low' which means that it will not be fixed in our stable Ubuntu releases unless there's a medium or higher issue found against libxvmc. This is to minimize regression risks for low impact security issues. ** Information type changed from Private Security to Public Security ** Changed in: libxvmc (Ubuntu) Status: New => Triaged ** Changed in: libxvmc (Ubuntu) Importance: Undecided => Low -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1691532 Title: CVE-2016-7953 in libxvmc 1.0.9 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libxvmc/+bug/1691532/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
