Oval Definition:	oval:org.opensuse.security:def:1753
Revision Date: 2022-06-16 Version: 1 Title: Security update for rubygem-actionpack-5_1, rubygem-activesupport-5_1 (Important) Description: This update for rubygem-actionpack-5_1 and rubygem-activesupport-5_1 fixes the following issues: - CVE-2021-22904: Fixed possible DoS Vulnerability in Action Controller Token Authentication (bsc#1185780) - CVE-2022-23633: Fixed possible exposure of information vulnerability in Action Pack (bsc#1196182) Family: unix Class: patch Status: Reference(s): 1176631 1185780 1196182 CVE-2013-6487 CVE-2014-3775 CVE-2016-2175 CVE-2021-22904 CVE-2022-23633 SUSE-SU-2020:2792-1 SUSE-SU-2022:2108-1 Platform(s): SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 15 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SUSE Linux Enterprise High Performance Computing 15 SP3 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for additional PackageHub packages 15 SUSE Linux Enterprise Module for Basesystem 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP2 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Containers 15 SUSE Linux Enterprise Module for Containers 15 SP1 SUSE Linux Enterprise Module for Desktop Applications 15 SUSE Linux Enterprise Module for Desktop Applications 15 SP1 SUSE Linux Enterprise Module for Development Tools 15 SUSE Linux Enterprise Module for Development Tools 15 SP1 SUSE Linux Enterprise Module for High Performance Computing 15 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Legacy Software 15 SUSE Linux Enterprise Module for Live Patching 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 15 SUSE Linux Enterprise Server 15 SP3 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 15 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 15 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Manager Proxy 4.2 SUSE Manager Retail Branch Server 4.2 SUSE Manager Server 4.2 Product(s): Definition Synopsis SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information libreoffice-4.3.5.2-10 is installed OR libreoffice-sdk-4.3.5.2-10 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.51-60.25 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information libjavascriptcoregtk-1_0-0-2.4.8-16.2 is installed OR libjavascriptcoregtk-1_0-0-32bit-2.4.8-16.2 is installed OR libjavascriptcoregtk-3_0-0-2.4.8-16.2 is installed OR libwebkit2gtk-3_0-25-2.4.8-16.2 is installed OR libwebkitgtk-1_0-0-2.4.8-16.2 is installed OR libwebkitgtk-1_0-0-32bit-2.4.8-16.2 is installed OR libwebkitgtk-3_0-0-2.4.8-16.2 is installed OR libwebkitgtk2-lang-2.4.8-16.2 is installed OR libwebkitgtk3-lang-2.4.8-16.2 is installed OR typelib-1_0-JavaScriptCore-3_0-2.4.8-16.2 is installed OR typelib-1_0-WebKit-3_0-2.4.8-16.2 is installed OR webkitgtk-2.4.8-16.2 is installed OR webkitgtk3-2.4.8-16.2 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND pigz-2.3-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information bzip2-1.0.6-29 is installed OR libbz2-1-1.0.6-29 is installed OR libbz2-1-32bit-1.0.6-29 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information dbus-1-1.8.22-28 is installed OR dbus-1-x11-1.8.22-28 is installed OR libdbus-1-3-1.8.22-28 is installed OR libdbus-1-3-32bit-1.8.22-28 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 is installed AND apache-pdfbox-1.8.12-3.77 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND python-PyYAML-3.10-17 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Availability 15 SP3 is installed OR SUSE Linux Enterprise High Performance Computing 15 SP3 is installed OR SUSE Linux Enterprise Server 15 SP3 is installed OR SUSE Linux Enterprise Server for SAP Applications 15 SP3 is installed OR SUSE Manager Proxy 4.2 is installed OR SUSE Manager Retail Branch Server 4.2 is installed OR SUSE Manager Server 4.2 is installed AND Package Information ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.12.1 is installed OR ruby2.5-rubygem-activesupport-5_1-5.1.4-150000.3.6.1 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_48-52_27-default-1-2.6 is installed OR kgraft-patch-3_12_48-52_27-xen-1-2.6 is installed OR kgraft-patch-SLE12_Update_8-1-2.6 is installed Definition Synopsis SUSE Linux Enterprise Module for additional PackageHub packages 15 is installed AND Package Information libxmlsec1-gcrypt1-1.2.26-3.3 is installed OR libxmlsec1-gnutls1-1.2.26-3.3 is installed OR libxmlsec1-openssl1-1.2.26-3.3 is installed OR xmlsec1-1.2.26-3.3 is installed OR xmlsec1-gnutls-devel-1.2.26-3.3 is installed OR xmlsec1-openssl-devel-1.2.26-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed AND bcm43xx-firmware-20180314-8.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information libvpx-1.6.1-6.6 is installed OR libvpx4-1.6.1-6.6 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND python-PyYAML-3.10-15 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 is installed AND docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.24 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 15 SP1 is installed AND Package Information containerd-1.2.6-5.16 is installed OR docker-19.03.1_ce-6.26 is installed OR docker-bash-completion-19.03.1_ce-6.26 is installed OR docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-4.15 is installed OR docker-runc-1.0.0rc8+gitr3826_425e105d5a03-6.21 is installed OR golang-github-docker-libnetwork-0.7.0.1+gitr2800_fc5a7d91d54c-4.15 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 is installed AND Package Information libmodplug-devel-0.3.9-3.3 is installed OR libmodplug1-0.3.9-3.3 is installed OR libopenmpt-0.3.9-3.3 is installed OR libopenmpt-devel-0.3.9-3.3 is installed OR libopenmpt0-0.3.9-3.3 is installed OR libopenmpt_modplug1-0.3.9-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Desktop Applications 15 SP1 is installed AND Package Information python-2.7.14-7.14 is installed OR python-tk-2.7.14-7.14 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 is installed AND Package Information crash-7.2.1-3.2 is installed OR crash-devel-7.2.1-3.2 is installed OR crash-kmp-default-7.2.1_k4.12.14_23-3.2 is installed OR lttng-modules-2.10.0-5.2 is installed OR lttng-modules-kmp-default-2.10.0_k4.12.14_23-5.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Development Tools 15 SP1 is installed AND Package Information ImageMagick-7.0.7.34-3.61 is installed OR perl-PerlMagick-7.0.7.34-3.61 is installed Definition Synopsis SUSE Linux Enterprise Module for High Performance Computing 15 is installed AND Package Information libpmi0-17.11.7-6.3 is installed OR libslurm32-17.11.7-6.3 is installed OR perl-slurm-17.11.7-6.3 is installed OR slurm-17.11.7-6.3 is installed OR slurm-auth-none-17.11.7-6.3 is installed OR slurm-config-17.11.7-6.3 is installed OR slurm-devel-17.11.7-6.3 is installed OR slurm-doc-17.11.7-6.3 is installed OR slurm-lua-17.11.7-6.3 is installed OR slurm-munge-17.11.7-6.3 is installed OR slurm-node-17.11.7-6.3 is installed OR slurm-pam_slurm-17.11.7-6.3 is installed OR slurm-plugins-17.11.7-6.3 is installed OR slurm-slurmdbd-17.11.7-6.3 is installed OR slurm-sql-17.11.7-6.3 is installed OR slurm-torque-17.11.7-6.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND syslog-ng-3.4.5-3 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 15 is installed AND Package Information libopenssl-1_0_0-devel-1.0.2n-3.3 is installed OR libopenssl1_0_0-1.0.2n-3.3 is installed OR openssl-1_0_0-1.0.2n-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Live Patching 15 is installed AND kernel-livepatch-tools-1.1-5.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 is installed AND Package Information kernel-default-4.12.14-25.25 is installed OR kernel-default-base-4.12.14-25.25 is installed OR kernel-docs-4.12.14-25.25 is installed OR kernel-docs-html-4.12.14-25.25 is installed OR kernel-obs-qa-4.12.14-25.25 is installed OR kselftests-kmp-default-4.12.14-25.25 is installed Definition Synopsis SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP1 is installed AND Package Information evolution-3.26.6-4.3 is installed OR glade-catalog-evolution-3.26.6-4.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-4 is installed OR php5-5.5.14-4 is installed OR php5-bcmath-5.5.14-4 is installed OR php5-bz2-5.5.14-4 is installed OR php5-calendar-5.5.14-4 is installed OR php5-ctype-5.5.14-4 is installed OR php5-curl-5.5.14-4 is installed OR php5-dba-5.5.14-4 is installed OR php5-dom-5.5.14-4 is installed OR php5-enchant-5.5.14-4 is installed OR php5-exif-5.5.14-4 is installed OR php5-fastcgi-5.5.14-4 is installed OR php5-fileinfo-5.5.14-4 is installed OR php5-fpm-5.5.14-4 is installed OR php5-ftp-5.5.14-4 is installed OR php5-gd-5.5.14-4 is installed OR php5-gettext-5.5.14-4 is installed OR php5-gmp-5.5.14-4 is installed OR php5-iconv-5.5.14-4 is installed OR php5-intl-5.5.14-4 is installed OR php5-json-5.5.14-4 is installed OR php5-ldap-5.5.14-4 is installed OR php5-mbstring-5.5.14-4 is installed OR php5-mcrypt-5.5.14-4 is installed OR php5-mysql-5.5.14-4 is installed OR php5-odbc-5.5.14-4 is installed OR php5-openssl-5.5.14-4 is installed OR php5-pcntl-5.5.14-4 is installed OR php5-pdo-5.5.14-4 is installed OR php5-pear-5.5.14-4 is installed OR php5-pgsql-5.5.14-4 is installed OR php5-pspell-5.5.14-4 is installed OR php5-shmop-5.5.14-4 is installed OR php5-snmp-5.5.14-4 is installed OR php5-soap-5.5.14-4 is installed OR php5-sockets-5.5.14-4 is installed OR php5-sqlite-5.5.14-4 is installed OR php5-suhosin-5.5.14-4 is installed OR php5-sysvmsg-5.5.14-4 is installed OR php5-sysvsem-5.5.14-4 is installed OR php5-sysvshm-5.5.14-4 is installed OR php5-tokenizer-5.5.14-4 is installed OR php5-wddx-5.5.14-4 is installed OR php5-xmlreader-5.5.14-4 is installed OR php5-xmlrpc-5.5.14-4 is installed OR php5-xmlwriter-5.5.14-4 is installed OR php5-xsl-5.5.14-4 is installed OR php5-zip-5.5.14-4 is installed OR php5-zlib-5.5.14-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information apache-commons-beanutils-1.9.2-1 is installed OR apache-commons-beanutils-javadoc-1.9.2-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information gdk-pixbuf-loader-rsvg-2.40.15-4 is installed OR librsvg-2-2-2.40.15-4 is installed OR librsvg-2-2-32bit-2.40.15-4 is installed OR rsvg-view-2.40.15-4 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libXcursor1-1.1.14-3.60 is installed OR libXcursor1-32bit-1.1.14-3.60 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information libXvnc1-1.6.0-12.6 is installed OR tigervnc-1.6.0-12.6 is installed OR xorg-x11-Xvnc-1.6.0-12.6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND libsmi-devel-0.4.8-18.63 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 is installed AND Package Information openconnect-7.08-6.3 is installed OR openconnect-devel-7.08-6.3 is installed OR openconnect-lang-7.08-6.3 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information libgadu-devel-1.12.2-1 is installed OR libgadu3-1.12.2-1 is installed
BACK