Oval Definition:
oval:org.opensuse.security:def:105863
Revision Date
:
2021-12-01
Version
:
1
Title
:
Security update for ruby2.5 (Important)
Description
:
This update for ruby2.5 fixes the following issues:
- CVE-2021-31799: Fixed Command injection vulnerability in RDoc (bsc#1190375). - CVE-2021-31810: Fixed trusting FTP PASV responses vulnerability in Net:FTP (bsc#1188161). - CVE-2021-32066: Fixed StartTLS stripping vulnerability in Net:IMAP (bsc#1188160).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1188160
1188161
1190375
CVE-2014-3564
CVE-2021-31799
CVE-2021-31810
CVE-2021-32066
SUSE-SU-2021:3838-1
Platform(s)
:
openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS
Product(s)
:
Definition Synopsis
openSUSE Tumbleweed is installed
AND
Package Information
gpgme-1.8.0-2.1 is installed
OR
libgpgme-devel-1.8.0-2.1 is installed
OR
libgpgme11-1.8.0-2.1 is installed
OR
libgpgme11-32bit-1.8.0-2.1 is installed
OR
libgpgmepp-devel-1.8.0-2.1 is installed
OR
libgpgmepp6-1.8.0-2.1 is installed
OR
libgpgmepp6-32bit-1.8.0-2.1 is installed
OR
libqgpgme-devel-1.8.0-2.1 is installed
OR
libqgpgme7-1.8.0-2.1 is installed
OR
libqgpgme7-32bit-1.8.0-2.1 is installed
OR
python-gpg-1.8.0-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 15 SP1-LTSS is installed
AND
Package Information
libruby2_5-2_5-2.5.9-4.20.1 is installed
OR
ruby2.5-2.5.9-4.20.1 is installed
OR
ruby2.5-devel-2.5.9-4.20.1 is installed
OR
ruby2.5-devel-extra-2.5.9-4.20.1 is installed
OR
ruby2.5-stdlib-2.5.9-4.20.1 is installed
BACK