OVAL Reference oval:org.opensuse.security:def:5042

Oval Definition:

oval:org.opensuse.security:def:5042

Revision Date:	2020-12-02	Version:	1
Title:	Security update for rubygem-actionpack-5_1 (Moderate)
Description:	This update for rubygem-actionpack-5_1 fixes the following issues: Security issues fixed: - CVE-2019-5418: Fixed a file content disclosure vulnerability in Action View which could be exploited via specially crafted accept headers in combination with calls to render file (bsc#1129272). - CVE-2019-5419: Fixed a resource exhaustion issue in Action View which could make the server unable to process requests (bsc#1129271).
Family:	unix	Class:	patch
Status:		Reference(s):	1129271 1129272 1162777 1163368 1166751 1169851 1171862 1174910 1174913 1177895 CVE-2007-4129 CVE-2009-2666 CVE-2009-2694 CVE-2009-2703 CVE-2009-3026 CVE-2009-3083 CVE-2009-3084 CVE-2009-3085 CVE-2009-3615 CVE-2010-0013 CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 CVE-2010-1167 CVE-2010-1624 CVE-2010-2528 CVE-2010-3711 CVE-2011-1091 CVE-2011-1521 CVE-2011-1947 CVE-2011-3200 CVE-2011-3389 CVE-2011-3594 CVE-2011-4944 CVE-2012-0845 CVE-2012-1150 CVE-2012-2214 CVE-2012-3374 CVE-2012-3482 CVE-2012-6152 CVE-2013-0271 CVE-2013-0272 CVE-2013-0273 CVE-2013-0274 CVE-2013-1752 CVE-2013-1753 CVE-2013-4238 CVE-2013-4758 CVE-2013-6370 CVE-2013-6371 CVE-2013-6477 CVE-2013-6478 CVE-2013-6479 CVE-2013-6481 CVE-2013-6482 CVE-2013-6483 CVE-2013-6484 CVE-2013-6485 CVE-2013-6486 CVE-2013-6487 CVE-2014-0020 CVE-2014-1912 CVE-2014-3467 CVE-2014-3468 CVE-2014-3469 CVE-2014-3634 CVE-2014-4650 CVE-2014-5461 CVE-2014-9645 CVE-2015-0247 CVE-2015-1572 CVE-2019-5418 CVE-2019-5419 CVE-2020-0556 CVE-2020-10704 CVE-2020-12823 CVE-2020-14361 CVE-2020-14362 CVE-2020-27153 CVE-2020-6792 CVE-2020-6793 CVE-2020-6794 CVE-2020-6795 CVE-2020-6797 CVE-2020-6798 CVE-2020-6800 SUSE-SU-2020:0385-1 SUSE-SU-2020:1132-1 SUSE-SU-2020:1930-1 SUSE-SU-2020:2452-1 SUSE-SU-2020:3034-1
Platform(s):	SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SUSE Linux Enterprise High Availability 12 SP1 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Availability 15 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for Rasperry Pi 12 SP2 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE Linux Enterprise Workstation Extension 15 SP1 SUSE Linux Enterprise Workstation Extension 15 SP2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information libQtWebKit4-4.6.3-5.20.23.1 is installed OR libQtWebKit4-32bit-4.6.3-5.20.23.1 is installed OR libqt4-4.6.3-5.20.23.1 is installed OR libqt4-32bit-4.6.3-5.20.23.1 is installed OR libqt4-qt3support-4.6.3-5.20.23.1 is installed OR libqt4-qt3support-32bit-4.6.3-5.20.23.1 is installed OR libqt4-sql-4.6.3-5.20.23.1 is installed OR libqt4-sql-32bit-4.6.3-5.20.23.1 is installed OR libqt4-sql-mysql-4.6.3-5.20.23.1 is installed OR libqt4-sql-mysql-32bit-4.6.3-5.20.23.1 is installed OR libqt4-sql-postgresql-4.6.3-5.20.23.1 is installed OR libqt4-sql-postgresql-32bit-4.6.3-5.20.23.1 is installed OR libqt4-sql-sqlite-4.6.3-5.20.23.1 is installed OR libqt4-sql-sqlite-32bit-4.6.3-5.20.23.1 is installed OR libqt4-sql-unixODBC-4.6.3-5.20.23.1 is installed OR libqt4-sql-unixODBC-32bit-4.6.3-5.20.23.1 is installed OR libqt4-x11-4.6.3-5.20.23.1 is installed OR libqt4-x11-32bit-4.6.3-5.20.23.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information libpng12-0-1.2.31-5.38.1 is installed OR libpng12-0-32bit-1.2.31-5.38.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND coolkey-1.1.0-147 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND busybox-1.21.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND busybox-1.21.1-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-36 is installed OR aaa_base-extras-13.2+git20140911.61c1681-36 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information gstreamer-0_10-plugins-good-0.10.31-16 is installed OR gstreamer-0_10-plugins-good-lang-0.10.31-16 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 is installed AND Package Information ctdb-4.2.4-18.30.1 is installed OR samba-4.2.4-18.30.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP1 is installed AND hawk2-1.0.1+git.1456406635.49e230d-12.1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND conntrack-tools-1.4.2-5 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND ruby2.1-rubygem-bundler-1.7.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP5 is installed AND python-requests-2.18.2-8.4 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 15 is installed AND Package Information ruby2.5-rubygem-actionpack-5_1-5.1.4-3.3 is installed OR rubygem-actionpack-5_1-5.1.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND SuSEfirewall2-3.6.312.333-3.13 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_36-38-default-3-2.1 is installed OR kgraft-patch-3_12_36-38-xen-3-2.1 is installed OR kgraft-patch-SLE12_Update_2-3-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-87.1 is installed OR libopenssl0_9_8-0.9.8j-87.1 is installed OR libopenssl0_9_8-32bit-0.9.8j-87.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-requests-2.3.0-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information apache2-mod_php5-5.5.14-4 is installed OR php5-5.5.14-4 is installed OR php5-bcmath-5.5.14-4 is installed OR php5-bz2-5.5.14-4 is installed OR php5-calendar-5.5.14-4 is installed OR php5-ctype-5.5.14-4 is installed OR php5-curl-5.5.14-4 is installed OR php5-dba-5.5.14-4 is installed OR php5-dom-5.5.14-4 is installed OR php5-enchant-5.5.14-4 is installed OR php5-exif-5.5.14-4 is installed OR php5-fastcgi-5.5.14-4 is installed OR php5-fileinfo-5.5.14-4 is installed OR php5-fpm-5.5.14-4 is installed OR php5-ftp-5.5.14-4 is installed OR php5-gd-5.5.14-4 is installed OR php5-gettext-5.5.14-4 is installed OR php5-gmp-5.5.14-4 is installed OR php5-iconv-5.5.14-4 is installed OR php5-intl-5.5.14-4 is installed OR php5-json-5.5.14-4 is installed OR php5-ldap-5.5.14-4 is installed OR php5-mbstring-5.5.14-4 is installed OR php5-mcrypt-5.5.14-4 is installed OR php5-mysql-5.5.14-4 is installed OR php5-odbc-5.5.14-4 is installed OR php5-openssl-5.5.14-4 is installed OR php5-pcntl-5.5.14-4 is installed OR php5-pdo-5.5.14-4 is installed OR php5-pear-5.5.14-4 is installed OR php5-pgsql-5.5.14-4 is installed OR php5-pspell-5.5.14-4 is installed OR php5-shmop-5.5.14-4 is installed OR php5-snmp-5.5.14-4 is installed OR php5-soap-5.5.14-4 is installed OR php5-sockets-5.5.14-4 is installed OR php5-sqlite-5.5.14-4 is installed OR php5-suhosin-5.5.14-4 is installed OR php5-sysvmsg-5.5.14-4 is installed OR php5-sysvsem-5.5.14-4 is installed OR php5-sysvshm-5.5.14-4 is installed OR php5-tokenizer-5.5.14-4 is installed OR php5-wddx-5.5.14-4 is installed OR php5-xmlreader-5.5.14-4 is installed OR php5-xmlrpc-5.5.14-4 is installed OR php5-xmlwriter-5.5.14-4 is installed OR php5-xsl-5.5.14-4 is installed OR php5-zip-5.5.14-4 is installed OR php5-zlib-5.5.14-4 is installed
Definition Synopsis
SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND Package Information salt-2016.11.4-45.2 is installed OR salt-minion-2016.11.4-45.2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND libadns1-1.4-73.21 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND NetworkManager-gnome-0.7.1-5.22.28 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND apache-commons-httpclient-3.1-4 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information bind-9.9.6P1-32.1 is installed OR bind-chrootenv-9.9.6P1-32.1 is installed OR bind-doc-9.9.6P1-32.1 is installed OR bind-libs-9.9.6P1-32.1 is installed OR bind-libs-32bit-9.9.6P1-32.1 is installed OR bind-utils-9.9.6P1-32.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libXxf86vm1-1.1.3-3 is installed OR libXxf86vm1-32bit-1.1.3-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information e2fsprogs-1.43.8-1 is installed OR libcom_err2-1.43.8-1 is installed OR libcom_err2-32bit-1.43.8-1 is installed OR libext2fs2-1.43.8-1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information libstorage-2.25.16.1-3.1 is installed OR libstorage-ruby-2.25.16.1-3.1 is installed OR libstorage5-2.25.16.1-3.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND dnsmasq-2.78-18.3 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND Package Information bytefx-data-mysql-2.6.7-0.16.1 is installed OR mono-core-2.6.7-0.16.1 is installed OR mono-data-2.6.7-0.16.1 is installed OR mono-data-firebird-2.6.7-0.16.1 is installed OR mono-data-oracle-2.6.7-0.16.1 is installed OR mono-data-postgresql-2.6.7-0.16.1 is installed OR mono-data-sqlite-2.6.7-0.16.1 is installed OR mono-data-sybase-2.6.7-0.16.1 is installed OR mono-devel-2.6.7-0.16.1 is installed OR mono-extras-2.6.7-0.16.1 is installed OR mono-jscript-2.6.7-0.16.1 is installed OR mono-locale-extras-2.6.7-0.16.1 is installed OR mono-nunit-2.6.7-0.16.1 is installed OR mono-wcf-2.6.7-0.16.1 is installed OR mono-web-2.6.7-0.16.1 is installed OR mono-winforms-2.6.7-0.16.1 is installed OR mono-winfxcore-2.6.7-0.16.1 is installed OR monodoc-core-2.6.7-0.16.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND libsmi-devel-0.4.8-18 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND augeas-devel-1.2.0-10 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND apache-pdfbox-1.8.12-1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information libreoffice-4.3.3.2-6.1 is installed OR libreoffice-base-4.3.3.2-6.1 is installed OR libreoffice-base-drivers-mysql-4.3.3.2-6.1 is installed OR libreoffice-base-drivers-postgresql-4.3.3.2-6.1 is installed OR libreoffice-calc-4.3.3.2-6.1 is installed OR libreoffice-calc-extensions-4.3.3.2-6.1 is installed OR libreoffice-draw-4.3.3.2-6.1 is installed OR libreoffice-filters-optional-4.3.3.2-6.1 is installed OR libreoffice-gnome-4.3.3.2-6.1 is installed OR libreoffice-icon-theme-tango-4.3.3.2-6.1 is installed OR libreoffice-impress-4.3.3.2-6.1 is installed OR libreoffice-l10n-af-4.3.3.2-6.1 is installed OR libreoffice-l10n-ar-4.3.3.2-6.1 is installed OR libreoffice-l10n-ca-4.3.3.2-6.1 is installed OR libreoffice-l10n-cs-4.3.3.2-6.1 is installed OR libreoffice-l10n-da-4.3.3.2-6.1 is installed OR libreoffice-l10n-de-4.3.3.2-6.1 is installed OR libreoffice-l10n-en-4.3.3.2-6.1 is installed OR libreoffice-l10n-es-4.3.3.2-6.1 is installed OR libreoffice-l10n-fi-4.3.3.2-6.1 is installed OR libreoffice-l10n-fr-4.3.3.2-6.1 is installed OR libreoffice-l10n-gu-4.3.3.2-6.1 is installed OR libreoffice-l10n-hi-4.3.3.2-6.1 is installed OR libreoffice-l10n-hu-4.3.3.2-6.1 is installed OR libreoffice-l10n-it-4.3.3.2-6.1 is installed OR libreoffice-l10n-ja-4.3.3.2-6.1 is installed OR libreoffice-l10n-ko-4.3.3.2-6.1 is installed OR libreoffice-l10n-nb-4.3.3.2-6.1 is installed OR libreoffice-l10n-nl-4.3.3.2-6.1 is installed OR libreoffice-l10n-nn-4.3.3.2-6.1 is installed OR libreoffice-l10n-pl-4.3.3.2-6.1 is installed OR libreoffice-l10n-pt-BR-4.3.3.2-6.1 is installed OR libreoffice-l10n-pt-PT-4.3.3.2-6.1 is installed OR libreoffice-l10n-ru-4.3.3.2-6.1 is installed OR libreoffice-l10n-sk-4.3.3.2-6.1 is installed OR libreoffice-l10n-sv-4.3.3.2-6.1 is installed OR libreoffice-l10n-xh-4.3.3.2-6.1 is installed OR libreoffice-l10n-zh-Hans-4.3.3.2-6.1 is installed OR libreoffice-l10n-zh-Hant-4.3.3.2-6.1 is installed OR libreoffice-l10n-zu-4.3.3.2-6.1 is installed OR libreoffice-mailmerge-4.3.3.2-6.1 is installed OR libreoffice-math-4.3.3.2-6.1 is installed OR libreoffice-officebean-4.3.3.2-6.1 is installed OR libreoffice-pyuno-4.3.3.2-6.1 is installed OR libreoffice-writer-4.3.3.2-6.1 is installed OR libreoffice-writer-extensions-4.3.3.2-6.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information kernel-default-3.12.62-60.62.1 is installed OR kernel-default-extra-3.12.62-60.62.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information libmysqlclient_r18-10.0.28-17.2 is installed OR libmysqlclient_r18-32bit-10.0.28-17.2 is installed OR mariadb-10.0.28-17.2 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP1 is installed AND Package Information MozillaThunderbird-68.5.0-3.71 is installed OR MozillaThunderbird-translations-common-68.5.0-3.71 is installed OR MozillaThunderbird-translations-other-68.5.0-3.71 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 15 SP2 is installed AND Package Information openconnect-7.08-6.9 is installed OR openconnect-devel-7.08-6.9 is installed OR openconnect-lang-7.08-6.9 is installed

BACK