OVAL Reference oval:com.ubuntu.xenial:def:20186914000

Oval Definition:

oval:com.ubuntu.xenial:def:20186914000

Revision Date:	2018-04-03	Version:	1
Title:	CVE-2018-6914 on Ubuntu 16.04 LTS (xenial) - medium.
Description:	Directory traversal vulnerability in the Dir.mktmpdir method in the tmpdir library in Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1 might allow attackers to create arbitrary directories or files via a .. (dot dot) in the prefix argument.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2018-6914
Platform(s):	Ubuntu 16.04 LTS	Product(s):
Definition Synopsis
Ubuntu 16.04 LTS (xenial) is installed. AND The 'ruby2.3' package in xenial was vulnerable but has been fixed (note: '2.3.1-2~16.04.9').