OVAL Reference oval:com.ubuntu.trusty:def:20186914000

Oval Definition:

oval:com.ubuntu.trusty:def:20186914000

Revision Date:	2018-04-03	Version:	1
Title:	CVE-2018-6914 on Ubuntu 14.04 LTS (trusty) - medium.
Description:	Directory traversal vulnerability in the Dir.mktmpdir method in the tmpdir library in Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1 might allow attackers to create arbitrary directories or files via a .. (dot dot) in the prefix argument.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-6914
Platform(s):	Ubuntu 14.04 LTS	Product(s):
Definition Synopsis
Ubuntu 14.04 LTS (trusty) is installed. AND Package Information The 'ruby1.9.1' package in trusty was vulnerable but has been fixed (note: '1.9.3.484-2ubuntu1.11'). OR The 'ruby2.0' package in trusty was vulnerable but has been fixed (note: '2.0.0.484-1ubuntu2.9').