CVE-2018-12938

Publication date 28 June 2018

Last updated 4 August 2025

Ubuntu priority

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2017-17833. Reason: This candidate is a duplicate of CVE-2017-17833. Notes: All CVE users should reference CVE-2017-17833 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
openslp-dfsg	18.04 LTS bionic	Not in release
	17.10 artful	Fixed 1.2.1-11ubuntu0.17.10.1
	16.04 LTS xenial	Fixed 1.2.1-11ubuntu0.16.04.1
	14.04 LTS trusty	Fixed 1.2.1-9ubuntu0.3

How can I get the fixes?
What do statuses mean?

Notes

mdeslaur

probably a dupe of CVE-2017-17833

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-3708-1
OpenSLP vulnerabilities
9 July 2018

Other references

https://dumpco.re/blog/openslp-2.0.0-double-free
https://www.cve.org/CVERecord?id=CVE-2018-12938