Oval Definition:oval:org.opensuse.security:def:110679
Revision Date:2020-07-18Version:1
Title:Security update for rubygem-puma (Moderate)
Description:

This update for rubygem-puma to version 4.3.5 fixes the following issues:

- CVE-2020-11077: Fixed a HTTP smuggling issue related to proxy usage (bsc#1172175). - CVE-2020-11076: Fixed a HTTP smuggling issue when using an invalid transfer-encoding header (bsc#1172176). - Disabled TLSv1.0 and TLSv1.1 (jsc#SLE-6965).

This update was imported from the SUSE:SLE-15:Update update project.
Family:unixClass:patch
Status:Reference(s):1172175
1172176
CVE-2020-11076
CVE-2020-11077
openSUSE-SU-2020:1001-1
Platform(s):openSUSE Leap 15.2
Product(s):
Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • ruby2.5-rubygem-puma-4.3.5-lp152.4.3.1 is installed
  • OR ruby2.5-rubygem-puma-doc-4.3.5-lp152.4.3.1 is installed
    • BACK