Oval Definition:	oval:com.ubuntu.xenial:def:201810000750000000
Revision Date: 2018-03-13 Version: 1 Title: CVE-2018-1000075 on Ubuntu 16.04 LTS (xenial) - medium. Description: RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a infinite loop caused by negative size vulnerability in ruby gem package tar header that can result in a negative size could cause an infinite loop.. This vulnerability appears to have been fixed in 2.7.6. Family: unix Class: vulnerability Status: Reference(s): CVE-2018-1000075 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND Package Information jruby package in xenial is affected and may need fixing. OR ruby2.3 package in xenial was vulnerable but has been fixed (note: '2.3.1-2~16.04.7').
BACK