Oval Definition:oval:com.ubuntu.cosmic:def:201814654000
Revision Date:2018-10-31Version:1
Title:CVE-2018-14654 on Ubuntu 18.10 (cosmic) - medium.
Description:The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GF_XATTROP_ENTRY_IN_KEY' xattrop to create arbitrary, empty files on the target server.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2018-14654
Platform(s):Ubuntu 18.10
Product(s):
Definition Synopsis
  • Ubuntu 18.10 (cosmic) is installed.
  • AND The 'glusterfs' package in cosmic is affected and needs fixing.
  • BACK