Oval Definition:
oval:org.mitre.oval:def:28244
Revision Date
:
2015-03-09
Version
:
5
Title
:
USN-2412-1 -- Ruby vulnerability
Description
:
Tomas Hoger discovered that Ruby incorrectly handled XML entity expansion.An attacker could use this flaw to cause Ruby to consume large amounts ofresources, resulting in a denial of service.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2014-8090
USN-2412-1
Platform(s)
:
Ubuntu 12.04
Ubuntu 14.04
Ubuntu 14.10
Product(s)
:
ruby1.8
ruby1.9.1
ruby2.0
ruby2.1
Definition Synopsis
Ubuntu 14.10 release section
Ubuntu 14.10 is installed
AND
Packages match section
libruby2.1 is earlier than 0:2.1.2-2ubuntu1.2
OR
libruby2.0 is earlier than 0:2.0.0.484+really457-3ubuntu1.2
OR
ruby2.1 is earlier than 0:2.1.2-2ubuntu1.2
OR
ruby2.0 is earlier than 0:2.0.0.484+really457-3ubuntu1.2
Ubuntu 14.04 release section
Ubuntu 14.04 is installed
AND
Packages match section
libruby2.0 is earlier than 0:2.0.0.484-1ubuntu2.2
OR
ruby1.9.1 is earlier than 0:1.9.3.484-2ubuntu1.2
OR
libruby1.9.1 is earlier than 0:1.9.3.484-2ubuntu1.2
OR
ruby2.0 is earlier than 0:2.0.0.484-1ubuntu2.2
Ubuntu 12.04 release section
Ubuntu 12.04 is installed
AND
Packages match section
ruby1.8 is earlier than 0:1.8.7.352-2ubuntu1.6
OR
ruby1.9.1 is earlier than 0:1.9.3.0-1ubuntu2.10
OR
libruby1.8 is earlier than 0:1.8.7.352-2ubuntu1.6
OR
libruby1.9.1 is earlier than 0:1.9.3.0-1ubuntu2.10
BACK