Oval Definition:	oval:org.cisecurity:def:246
Revision Date: 2016-02-08 Version: 2 Title: DSA-3245-1 -- ruby1.8 -- security update Description: It was discovered that the Ruby OpenSSL extension, part of the interpreter for the Ruby language, did not properly implement hostname matching, in violation of RFC 6125. This could allow remote attackers to perform a man-in-the-middle attack via crafted SSL certificates. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2015-1855 DSA-3245-1 Platform(s): Debian GNU/kFreeBSD 7.0 Debian GNU/Linux 7.0 Product(s): ruby1.8 Definition Synopsis Debian 7 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed OR Debian GNU/kFreeBSD is installed AND ruby1.8 is earlier than 0:1.8.7.358-7.1+deb7u3
BACK