Oval Definition:	oval:com.ubuntu.cosmic:def:2018146540000000
Revision Date: 2018-10-31 Version: 1 Title: CVE-2018-14654 on Ubuntu 18.10 (cosmic) - medium. Description: The Gluster file system through version 4.1.4 is vulnerable to abuse of the 'features/index' translator. A remote attacker with access to mount volumes could exploit this via the 'GF_XATTROP_ENTRY_IN_KEY' xattrop to create arbitrary, empty files on the target server. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-14654 Platform(s): Ubuntu 18.10 Product(s): Definition Synopsis Ubuntu 18.10 (cosmic) is installed. AND glusterfs: while related to the CVE in some way, a decision has been made to ignore this issue (note: 'reached end-of-life').
BACK