Oval Definition:oval:org.opensuse.security:def:20081145
Revision Date:2022-05-20Version:1
Title:CVE-2008-1145
Description:

Directory traversal vulnerability in WEBrick in Ruby 1.8 before 1.8.5-p115 and 1.8.6-p114, and 1.9 through 1.9.0-1, when running on systems that support backslash (\) path separators or case-insensitive file names, allows remote attackers to access arbitrary files via (1) "..%5c" (encoded backslash) sequences or (2) filenames that match patterns in the :NondisclosureName option.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-1145
Mitre CVE-2008-1145
SUSE CVE-2008-1145
SUSE-SR:2008:017
SUSE-SR:2008:017
Platform(s):Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
Open Enterprise Server
openSUSE 10.3
openSUSE 11.0
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise SDK 10 SP2
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP3
SUSE Linux Enterprise Server 11 SP4
SUSE Linux Enterprise Server for SAP Applications 11 SP4
SUSE Linux Enterprise Software Development Kit 11 SP4
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND Package Information
  • ruby-1.8.7.p357-0.9.9 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.9 is installed
  • OR ruby-tk-1.8.7.p357-0.9.9 is installed
    • Definition Synopsis
  • sles10-sp2-sdk is installed
  • AND Package Information
  • ruby-devel less than 1.8.4-17.19
  • OR ruby-doc-html less than 1.8.4-17.19
  • OR ruby-doc-ri less than 1.8.4-17.19
  • OR ruby-examples less than 1.8.4-17.19
  • OR ruby-test-suite less than 1.8.4-17.19
  • OR ruby-tk less than 1.8.4-17.19
  • OR ruby less than 1.8.4-17.19
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • ruby-1.8.7.p357-0.7.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.7.1 is installed
  • OR ruby-tk-1.8.7.p357-0.7.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • ruby-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.9.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • ruby-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.17.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • ruby-1.8.7.p357-0.7.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.7.1 is installed
  • OR ruby-tk-1.8.7.p357-0.7.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • ruby-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.9.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • ruby-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.17.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND
  • ruby-devel-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-doc-ri-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-examples-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-test-suite-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.17.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • ruby-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.9.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • ruby-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.17.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND
  • ruby-1.8.7.p72-5.24 is installed
  • OR ruby-doc-html-1.8.7.p72-5.24 is installed
  • OR ruby-tk-1.8.7.p72-5.24 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • ruby-1.8.7.p357-0.7 is installed
  • OR ruby-doc-html-1.8.7.p357-0.7 is installed
  • OR ruby-tk-1.8.7.p357-0.7 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • ruby-1.8.7.p357-0.9.9 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.9 is installed
  • OR ruby-tk-1.8.7.p357-0.9.9 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • ruby-1.8.7.p357-0.9.17 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.17 is installed
  • OR ruby-tk-1.8.7.p357-0.9.17 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND
  • ruby-devel-1.8.7.p357-0.9.17 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.17 is installed
  • OR ruby-doc-ri-1.8.7.p357-0.9.17 is installed
  • OR ruby-examples-1.8.7.p357-0.9.17 is installed
  • OR ruby-test-suite-1.8.7.p357-0.9.17 is installed
  • OR ruby-tk-1.8.7.p357-0.9.17 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • ruby-1.8.7.p357-0.7.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.7.1 is installed
  • OR ruby-tk-1.8.7.p357-0.7.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • ruby-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.9.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • ruby-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.17.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND
  • ruby-1.8.7.p72-5.24.2 is installed
  • OR ruby-doc-html-1.8.7.p72-5.24.2 is installed
  • OR ruby-tk-1.8.7.p72-5.24.2 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise Server 11 SP2 is installed
  • AND
  • ruby-1.8.7.p357-0.7.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.7.1 is installed
  • OR ruby-tk-1.8.7.p357-0.7.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP3 is installed
  • AND
  • ruby-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.9.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.9.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Software Development Kit 11 SP4 is installed
  • AND
  • ruby-devel-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-doc-ri-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-examples-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-test-suite-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.17.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP4 is installed
  • AND
  • ruby-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-doc-html-1.8.7.p357-0.9.17.1 is installed
  • OR ruby-tk-1.8.7.p357-0.9.17.1 is installed
  • OR Package Information
  • SUSE Linux Enterprise Server 11 SP1 is installed
  • AND
  • ruby-1.8.7.p72-5.24.2 is installed
  • OR ruby-doc-html-1.8.7.p72-5.24.2 is installed
  • OR ruby-tk-1.8.7.p72-5.24.2 is installed
    • BACK