Oval Definition:oval:com.ubuntu.bionic:def:201865740000000
Revision Date:2018-02-07Version:1
Title:CVE-2018-6574 on Ubuntu 18.04 LTS (bionic) - low.
Description:Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow "go get" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-6574
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND Package Information
  • golang-1.8 package in bionic is affected and needs fixing.
  • OR golang-1.9 package in bionic, is related to the CVE in some way and has been fixed (note: '1.9.4-1ubuntu1').
  • BACK