Revision Date: | 2021-02-01 | Version: | 1 |
Title: | Security update for rubygem-nokogiri (Important) |
Description: |
This update for rubygem-nokogiri fixes the following issues: rubygem-nokogiri was updated to 1.8.5 (bsc#1156722).
Security issues fixed:
- CVE-2019-5477: Fixed a command injection vulnerability (bsc#1146578). - CVE-2020-26247: Fixed an XXE vulnerability in Nokogiri::XML::Schema (bsc#1180507).
|
Family: | unix | Class: | patch |
Status: | | Reference(s): | 1146578 1156722 1180507 CVE-2019-5477 CVE-2020-26247 SUSE-SU-2021:0251-1
|
Platform(s): | SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 15 SP2 SUSE Linux Enterprise Server 15 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 SUSE Linux Enterprise Storage 7 SUSE Manager Proxy 4.1 SUSE Manager Server 4.1
| Product(s): | |
Definition Synopsis |
SUSE Linux Enterprise High Availability 15 SP2 is installed AND ruby2.5-rubygem-nokogiri-1.8.5-3.6.1 is installed
|