UBUNTU-CVE-2018-6508

See a problem?
Please try reporting it to the source first.

Source

https://ubuntu.com/security/CVE-2018-6508

Import Source

https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2018/UBUNTU-CVE-2018-6508.json

JSON Data

https://api.osv.dev/v1/vulns/UBUNTU-CVE-2018-6508

Related

CVE-2018-6508

Published

2018-02-09T20:29:00Z

Modified

2025-04-23T15:06:00Z

Severity

8.0 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

Puppet Enterprise 2017.3.x prior to 2017.3.3 are vulnerable to a remote execution bug when a specially crafted string was passed into the factertask or puppetconf tasks. This vulnerability only affects tasks in the affected modules, if you are not using puppet tasks you are not affected by this vulnerability.

References

Affected packages

Ubuntu:Pro:16.04:LTS / puppet-module-puppetlabs-apache

Package

Name: puppet-module-puppetlabs-apache
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apache@1.6.0-1?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.1.1-1

1.6.0-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / puppet-module-puppetlabs-apt

Package

Name: puppet-module-puppetlabs-apt
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apt@2.2.0-1?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.6.0-2

2.*

2.2.0-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:16.04:LTS / puppet-module-puppetlabs-mysql

Package

Name: puppet-module-puppetlabs-mysql
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-mysql@3.6.1-1?arch=source&distro=esm-apps/xenial

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.3.1-1

3.*

3.6.1-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / puppet-module-puppetlabs-apache

Package

Name: puppet-module-puppetlabs-apache
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apache@3.0.0-1?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1.*

1.10.0-1

3.*

3.0.0-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / puppet-module-puppetlabs-apt

Package

Name: puppet-module-puppetlabs-apt
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apt@4.5.1-1?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

2.*

2.3.0-1

4.*

4.4.1-1

4.5.1-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:Pro:18.04:LTS / puppet-module-puppetlabs-mysql

Package

Name: puppet-module-puppetlabs-mysql
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-mysql@3.10.0-1?arch=source&distro=esm-apps/bionic

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.10.0-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / puppet-module-puppetlabs-apache

Package

Name: puppet-module-puppetlabs-apache
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apache@3.4.0-1?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

3.*

3.4.0-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / puppet-module-puppetlabs-apt

Package

Name: puppet-module-puppetlabs-apt
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apt@6.1.1-1?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

6.*

6.1.1-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:20.04:LTS / puppet-module-puppetlabs-mysql

Package

Name: puppet-module-puppetlabs-mysql
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-mysql@8.1.0-2ubuntu1?arch=source&distro=focal

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.3.0-1ubuntu1

8.*

8.1.0-2ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / puppet-module-puppetlabs-apache

Package

Name: puppet-module-puppetlabs-apache
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apache@5.5.0-2?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.5.0-2

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / puppet-module-puppetlabs-apt

Package

Name: puppet-module-puppetlabs-apt
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apt@6.1.1-1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

6.*

6.1.1-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:22.04:LTS / puppet-module-puppetlabs-mysql

Package

Name: puppet-module-puppetlabs-mysql
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-mysql@8.1.0-5ubuntu1?arch=source&distro=jammy

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

8.*

8.1.0-5ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / puppet-module-puppetlabs-apache

Package

Name: puppet-module-puppetlabs-apache
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apache@12.0.2-1?arch=source&distro=oracular

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

12.*

12.0.2-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / puppet-module-puppetlabs-apt

Package

Name: puppet-module-puppetlabs-apt
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apt@9.4.0-1?arch=source&distro=oracular

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

9.*

9.4.0-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.10 / puppet-module-puppetlabs-mysql

Package

Name: puppet-module-puppetlabs-mysql
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-mysql@8.1.0-7ubuntu1?arch=source&distro=oracular

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

8.*

8.1.0-7ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / puppet-module-puppetlabs-apache

Package

Name: puppet-module-puppetlabs-apache
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apache@12.0.2-1?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

5.*

5.5.0-2

12.*

12.0.2-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / puppet-module-puppetlabs-apt

Package

Name: puppet-module-puppetlabs-apt
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apt@9.4.0-1?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

9.*

9.0.1-1

9.4.0-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:24.04:LTS / puppet-module-puppetlabs-mysql

Package

Name: puppet-module-puppetlabs-mysql
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-mysql@8.1.0-7ubuntu1?arch=source&distro=noble

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

8.*

8.1.0-7ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:25.04 / puppet-module-puppetlabs-apache

Package

Name: puppet-module-puppetlabs-apache
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apache@12.2.0-1?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

12.*

12.0.2-1

12.2.0-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:25.04 / puppet-module-puppetlabs-apt

Package

Name: puppet-module-puppetlabs-apt
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-apt@9.4.0-1?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

9.*

9.4.0-1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}

Ubuntu:25.04 / puppet-module-puppetlabs-mysql

Package

Name: puppet-module-puppetlabs-mysql
Purl: pkg:deb/ubuntu/puppet-module-puppetlabs-mysql@8.1.0-7ubuntu1?arch=source&distro=plucky

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

8.*

8.1.0-7ubuntu1

Ecosystem specific

{
    "ubuntu_priority": "medium"
}