Oval Definition:oval:org.opensuse.security:def:20110449
Revision Date:2015-11-16Version:1
Title:CVE-2011-0449
Description:
actionpack/lib/action_view/template/resolver.rb in Ruby on Rails 3.0.x before 3.0.4, when a case-insensitive filesystem is used, does not properly implement filters associated with the list of available templates, which allows remote attackers to bypass intended access restrictions via an action name that uses an unintended case for alphabetic characters.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2011-0449
Platform(s):openSUSE 11.3
openSUSE 11.4
SUSE Linux Enterprise Software Development Kit 11 SP1
SUSE Studio Extension for System z 1.2
SUSE Studio Onsite 1.2 [Appliance - Studio]
SUSE Studio Standard Edition 1.2
WebYaST 1.2
Product(s):
Definition Synopsis
  • Release Information
  • sle11-sp1-sdk is installed
  • AND
  • rubygem-actionmailer-2_3 less than 2.3.14-0.7.4.3
  • OR rubygem-actionpack-2_3 less than 2.3.14-0.7.4.3
  • OR rubygem-activerecord-2_3 less than 2.3.14-0.7.4.3
  • OR rubygem-activeresource-2_3 less than 2.3.14-0.7.4.3
  • OR rubygem-activesupport-2_3 less than 2.3.14-0.7.4.3
  • OR rubygem-rack less than 1.1.2-0.8.8.3
  • OR rubygem-rails-2_3 less than 2.3.14-0.7.4.3
  • OR rubygem-rails less than 2.3.14-0.8.6.1
  • OR Package Information
  • suse113 is installed
  • rubygem-actionmailer-2_3 less than 2.3.14-0.3.1
  • OR rubygem-actionmailer less than 2.3.14-0.3.1
  • OR rubygem-actionpack-2_3 less than 2.3.14-0.2.1
  • OR rubygem-actionpack less than 2.3.14-0.3.1
  • OR rubygem-activerecord-2_3 less than 2.3.14-0.3.1
  • OR rubygem-activerecord less than 2.3.14-0.3.1
  • OR rubygem-activeresource-2_3 less than 2.3.14-0.3.1
  • OR rubygem-activeresource less than 2.3.14-0.3.1
  • OR rubygem-activesupport-2_3 less than 2.3.14-0.3.1
  • OR rubygem-activesupport less than 2.3.14-0.3.1
  • OR rubygem-rack less than 1.1.2-0.3.1
  • OR rubygem-rails-2_3 less than 2.3.14-0.3.1
  • OR rubygem-rails less than 2.3.14-0.3.1
  • OR
  • suse114 is installed
  • rubygem-actionmailer-2_3-doc less than 2.3.14-0.3.1
  • OR rubygem-actionmailer-2_3-testsuite less than 2.3.14-0.3.1
  • OR rubygem-actionmailer-2_3 less than 2.3.14-0.3.1
  • OR rubygem-actionmailer less than 2.3.14-0.3.1
  • OR rubygem-actionpack-2_3-doc less than 2.3.14-0.3.1
  • OR rubygem-actionpack-2_3-testsuite less than 2.3.14-0.3.1
  • OR rubygem-actionpack-2_3 less than 2.3.14-0.3.1
  • OR rubygem-actionpack less than 2.3.14-0.3.1
  • OR rubygem-activerecord-2_3-doc less than 2.3.14-0.3.1
  • OR rubygem-activerecord-2_3-testsuite less than 2.3.14-0.3.1
  • OR rubygem-activerecord-2_3 less than 2.3.14-0.3.1
  • OR rubygem-activerecord less than 2.3.14-0.3.1
  • OR rubygem-activeresource-2_3-doc less than 2.3.14-0.3.1
  • OR rubygem-activeresource-2_3-testsuite less than 2.3.14-0.3.1
  • OR rubygem-activeresource-2_3 less than 2.3.14-0.3.1
  • OR rubygem-activeresource less than 2.3.14-0.3.1
  • OR rubygem-activesupport-2_3-doc less than 2.3.14-0.3.1
  • OR rubygem-activesupport-2_3 less than 2.3.14-0.3.1
  • OR rubygem-activesupport less than 2.3.14-0.3.1
  • OR rubygem-rack less than 1.1.2-0.3.1
  • OR rubygem-rails-2_3-doc less than 2.3.14-0.3.1
  • OR rubygem-rails-2_3 less than 2.3.14-0.3.1
  • OR rubygem-rails less than 2.3.14-0.3.1
    • BACK