Oval Definition:	oval:com.ubuntu.bionic:def:20188780000
Revision Date: 2018-04-03 Version: 1 Title: CVE-2018-8780 on Ubuntu 18.04 LTS (bionic) - medium. Description: In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, the Dir.open, Dir.new, Dir.entries and Dir.empty? methods do not check NULL characters. When using the corresponding method, unintentional directory traversal may be performed. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-8780 Platform(s): Ubuntu 18.04 LTS Product(s): Definition Synopsis Ubuntu 18.04 LTS (bionic) is installed. AND The 'ruby2.5' package in bionic was vulnerable but has been fixed (note: '2.5.1-1').
BACK