CVE-2018-5735

Name of the Vulnerable Software and Affected Versions: Debian versions 9.9.5.dfsg-9+deb8u15 through 9.9.5.dfsg-9+deb8u18 Debian version 9.10.3.dfsg.P4-12.3+deb9u5 Debian version 9.11.5.P4+dfsg-5.1

Description: The issue leads to an assertion failure in validator.c at line 1858 due to the Debian backport of a fix. This problem may also affect other packages from different distributions that applied similar backports.

Recommendations: For Debian versions 9.9.5.dfsg-9+deb8u15 through 9.9.5.dfsg-9+deb8u18, consider applying an alternative fix to avoid assertion failure. For Debian version 9.10.3.dfsg.P4-12.3+deb9u5, apply a patch to resolve the issue in validator.c. For Debian version 9.11.5.P4+dfsg-5.1, update the package to a version that includes a corrected backport of the fix. At the moment, there is no information about a newer version that contains a fix for this vulnerability.