OVAL Reference oval:org.opensuse.security:def:20123465

Oval Definition:

oval:org.opensuse.security:def:20123465

Revision Date:	2021-10-24	Version:	1
Title:	CVE-2012-3465
Description:	Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/sanitize_helper.rb in the strip_tags helper in Ruby on Rails before 3.0.17, 3.1.x before 3.1.8, and 3.2.x before 3.2.8 allows remote attackers to inject arbitrary web script or HTML via malformed HTML markup.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2012-3465 Mitre CVE-2012-3465 SUSE CVE-2012-3465 openSUSE-SU-2012:1218-1 openSUSE-SU-2012:1218-1 SUSE-SU-2012:1367-1 SUSE-SU-2012:1367-1 SUSE-SU-2013:0194-1 SUSE-SU-2013:0194-1 SUSE-SU-2013:0208-1 SUSE-SU-2013:0208-1 SUSE-SU-2013:0209-1 SUSE-SU-2013:0209-1
Platform(s):	openSUSE 12.1 openSUSE 12.1 Update openSUSE 12.2 Update SUSE Cloud 1.0 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise High Availability Extension 11 SP2 SUSE Linux Enterprise High Performance Computing 11 SP2 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server for SAP Applications 11 SP2 SUSE Linux Enterprise Server for SAP Applications 11 SP4 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Studio Extension for System z 1.2 SUSE Studio Onsite 1.2 [Appliance - Studio] SUSE Studio Standard Edition 1.2 WebYaST 1.2	Product(s):
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND rubygem-actionpack-3_2-3.2.12-0.19 is installed OR Package Information SUSE Linux Enterprise High Availability Extension 11 SP2 is installed AND hawk-0.5.2-0.38 is installed OR hawk-templates-0.5.2-0.38 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND rubygem-actionpack-2_3-2.3.14-0.14 is installed OR rubygem-activesupport-2_3-2.3.14-0.12 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Availability Extension 11 SP2 is installed AND hawk-0.5.2-0.38.16 is installed OR hawk-templates-0.5.2-0.38.16 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND rubygem-actionpack-2_3-2.3.14-0.14.1 is installed OR rubygem-activesupport-2_3-2.3.14-0.12.1 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND rubygem-actionpack-3_2-3.2.12-0.19.1 is installed OR Package Information SUSE Linux Enterprise High Availability Extension 11 SP2 is installed AND hawk-0.5.2-0.38.16 is installed OR hawk-templates-0.5.2-0.38.16 is installed OR Package Information SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND rubygem-actionpack-2_3-2.3.14-0.14.1 is installed OR rubygem-activesupport-2_3-2.3.14-0.12.1 is installed

BACK