Ubuntu 16.04 ESM / 18.04 ESM : libcgroup vulnerability (USN-4845-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-4845-1 advisory. It was discovered that libcgroup incorrectly handled log file permissions. An attacker could possibly use this issue to obtain sensitive information...

AZL-6615 CVE-2018-14348 affecting package libcgroup for versions less than 0.41-23

libcgroup up to and including 0.41 creates /var/log/cgred with mode 0666 regardless of the configured umask, leading to disclosure of information...