Oval Definition:oval:org.opensuse.security:def:20130277
Revision Date:2021-08-15Version:1
Title:CVE-2013-0277
Description:

ActiveRecord in Ruby on Rails before 2.3.17 and 3.x before 3.1.0 allows remote attackers to cause a denial of service or execute arbitrary code via crafted serialized attributes that cause the +serialize+ helper to deserialize arbitrary YAML.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-0277
Mitre CVE-2013-0277
SUSE CVE-2013-0277
openSUSE-SU-2013:0338-1
openSUSE-SU-2013:0338-1
openSUSE-SU-2013:0462-1
openSUSE-SU-2013:0462-1
SUSE-SU-2013:0486-1
SUSE-SU-2013:0486-1
Platform(s):openSUSE 12.1
openSUSE 12.1 Update
openSUSE 12.2 Update
SUSE Cloud 1.0
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server for SAP Applications 11 SP2
SUSE Linux Enterprise Software Development Kit 11 SP2
SUSE OpenStack Cloud 6
SUSE Studio Extension for System z 1.2
SUSE Studio Onsite 1.2 [Appliance - Studio]
SUSE Studio Standard Edition 1.2
WebYaST 1.2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND Package Information
  • rubygem-actionmailer-2_3-2.3.17-0.9 is installed
  • OR rubygem-actionpack-2_3-2.3.17-0.9 is installed
  • OR rubygem-activerecord-2_3-2.3.17-0.9 is installed
  • OR rubygem-activeresource-2_3-2.3.17-0.9 is installed
  • OR rubygem-activesupport-2_3-2.3.17-0.9 is installed
  • OR rubygem-rails-2.3.17-0.8 is installed
  • OR rubygem-rails-2_3-2.3.17-0.9 is installed
    • Definition Synopsis
  • SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed
  • AND Package Information
  • ruby2.1-rubygem-chef-10.32.2-3 is installed
  • OR rubygem-chef-10.32.2-3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 6 is installed
  • AND Package Information
  • ruby2.1-rubygem-chef-10.32.2-3 is installed
  • OR ruby2.1-rubygem-chef-expander-10.32.2-1 is installed
  • OR ruby2.1-rubygem-chef-server-10.32.2-1 is installed
  • OR ruby2.1-rubygem-chef-server-api-10.32.2-4 is installed
  • OR ruby2.1-rubygem-chef-solr-10.32.2-1 is installed
  • OR rubygem-chef-10.32.2-3 is installed
  • OR rubygem-chef-expander-10.32.2-1 is installed
  • OR rubygem-chef-server-api-10.32.2-4 is installed
  • OR rubygem-chef-solr-10.32.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Software Development Kit 11 SP2 is installed
  • AND Package Information
  • rubygem-actionmailer-2_3-2.3.17-0.9.1 is installed
  • OR rubygem-actionpack-2_3-2.3.17-0.9.1 is installed
  • OR rubygem-activerecord-2_3-2.3.17-0.9.1 is installed
  • OR rubygem-activeresource-2_3-2.3.17-0.9.1 is installed
  • OR rubygem-activesupport-2_3-2.3.17-0.9.1 is installed
  • OR rubygem-rails-2.3.17-0.8.1 is installed
  • OR rubygem-rails-2_3-2.3.17-0.9.1 is installed
    • BACK