Oval Definition:	oval:org.opensuse.security:def:5131
Revision Date: 2020-12-02 Version: 1 Title: Security update for rubygem-actionpack-5_1 (Important) Description: This update for rubygem-actionpack-5_1 fixes the following issues: - CVE-2020-8164: Possible Strong Parameters Bypass in ActionPack. There is a strong parameters bypass vector in ActionPack. (bsc#1172177) Family: unix Class: patch Status: Reference(s): 1170771 1172177 CVE-2007-6720 CVE-2009-0179 CVE-2009-2694 CVE-2009-2703 CVE-2009-3026 CVE-2009-3083 CVE-2009-3084 CVE-2009-3085 CVE-2009-3615 CVE-2009-3995 CVE-2009-3996 CVE-2009-5029 CVE-2010-0013 CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 CVE-2010-1205 CVE-2010-1624 CVE-2010-2528 CVE-2010-2546 CVE-2010-3711 CVE-2011-0465 CVE-2011-1091 CVE-2011-1526 CVE-2011-2501 CVE-2011-2690 CVE-2011-2691 CVE-2011-2692 CVE-2011-3328 CVE-2011-3594 CVE-2011-3630 CVE-2011-3631 CVE-2011-3632 CVE-2011-4182 CVE-2011-4862 CVE-2012-2214 CVE-2012-2673 CVE-2012-3374 CVE-2012-3466 CVE-2012-4412 CVE-2012-5112 CVE-2012-5133 CVE-2012-6152 CVE-2013-0242 CVE-2013-0271 CVE-2013-0272 CVE-2013-0273 CVE-2013-0274 CVE-2013-1914 CVE-2013-2001 CVE-2013-2207 CVE-2013-4237 CVE-2013-4332 CVE-2013-4458 CVE-2013-6477 CVE-2013-6478 CVE-2013-6479 CVE-2013-6481 CVE-2013-6482 CVE-2013-6483 CVE-2013-6484 CVE-2013-6485 CVE-2013-6486 CVE-2013-6487 CVE-2013-6954 CVE-2013-7423 CVE-2014-0020 CVE-2014-0333 CVE-2014-0475 CVE-2014-1344 CVE-2014-1384 CVE-2014-1385 CVE-2014-1386 CVE-2014-1387 CVE-2014-1388 CVE-2014-1389 CVE-2014-1390 CVE-2014-2524 CVE-2014-4043 CVE-2014-5119 CVE-2014-6040 CVE-2014-6271 CVE-2014-7169 CVE-2014-7186 CVE-2014-7187 CVE-2014-7817 CVE-2014-8121 CVE-2014-9402 CVE-2015-1472 CVE-2015-1781 CVE-2015-2330 CVE-2020-12243 CVE-2020-8164 SUSE-SU-2020:1219-1 SUSE-SU-2020:2710-1 Platform(s): openSUSE 13.1 openSUSE 13.1 NonFree SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP5 SUSE Linux Enterprise High Availability 15 SP2 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Point of Sale 12 SP2 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE OpenStack Cloud 5 Product(s): Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information cpio-2.9-75.78.1 is installed OR cpio-lang-2.9-75.78.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information finch-2.10.9-5 is installed OR libpurple-2.10.9-5 is installed OR libpurple-lang-2.10.9-5 is installed OR libpurple-meanwhile-2.10.9-5 is installed OR libpurple-tcl-2.10.9-5 is installed OR pidgin-2.10.9-5 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information bash-4.2-75 is installed OR bash-doc-4.2-75 is installed OR bash-lang-4.2-75 is installed OR libreadline6-6.2-75 is installed OR libreadline6-32bit-6.2-75 is installed OR readline-doc-6.2-75 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND autofs-5.0.9-27 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information fontconfig-2.11.1-7 is installed OR fontconfig-32bit-2.11.1-7 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information ctdb-4.4.2-38.6 is installed OR samba-4.4.2-38.6 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP3 is installed AND Package Information cluster-md-kmp-default-4.4.73-5 is installed OR dlm-kmp-default-4.4.73-5 is installed OR gfs2-kmp-default-4.4.73-5 is installed OR ocfs2-kmp-default-4.4.73-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP5 is installed AND conntrack-tools-1.4.2-5 is installed Definition Synopsis SUSE Linux Enterprise High Availability 15 SP2 is installed AND Package Information ruby2.5-rubygem-actionpack-5_1-5.1.4-3.6 is installed OR rubygem-actionpack-5_1-5.1.4-3.6 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information apache2-2.4.23-29.43 is installed OR apache2-doc-2.4.23-29.43 is installed OR apache2-example-pages-2.4.23-29.43 is installed OR apache2-prefork-2.4.23-29.43 is installed OR apache2-utils-2.4.23-29.43 is installed OR apache2-worker-2.4.23-29.43 is installed Definition Synopsis Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND libldap-2_4-2-2.4.46-9.28 is installed OR libldap-2_4-2-32bit-2.4.46-9.28 is installed OR libldap-data-2.4.46-9.28 is installed OR openldap2-2.4.46-9.28 is installed OR openldap2-client-2.4.46-9.28 is installed OR openldap2-devel-2.4.46-9.28 is installed OR openldap2-devel-32bit-2.4.46-9.28 is installed OR openldap2-devel-static-2.4.46-9.28 is installed OR openldap2-ppolicy-check-password-1.2-9.28 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND libldap-2_4-2-2.4.46-9.28 is installed OR libldap-2_4-2-32bit-2.4.46-9.28 is installed OR libldap-data-2.4.46-9.28 is installed OR openldap2-2.4.46-9.28 is installed OR openldap2-client-2.4.46-9.28 is installed OR openldap2-devel-2.4.46-9.28 is installed OR openldap2-devel-32bit-2.4.46-9.28 is installed OR openldap2-devel-static-2.4.46-9.28 is installed OR openldap2-ppolicy-check-password-1.2-9.28 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_44-52_10-default-1-2.1 is installed OR kgraft-patch-3_12_44-52_10-xen-1-2.1 is installed OR kgraft-patch-SLE12_Update_6-1-2.1 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_3-default-1-2.1 is installed OR kgraft-patch-SLE12-SP3_Update_1-1-2.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND sles12-docker-image-1.1.4-20171002 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-70.2 is installed OR libopenssl0_9_8-0.9.8j-70.2 is installed OR libopenssl0_9_8-32bit-0.9.8j-70.2 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND Package Information kernel-ec2-3.12.43-52.6.1 is installed OR kernel-ec2-devel-3.12.43-52.6.1 is installed OR kernel-ec2-extra-3.12.43-52.6.1 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information libpython3_4m1_0-3.4.5-17.1 is installed OR python3-3.4.5-17.1 is installed OR python3-base-3.4.5-17.1 is installed Definition Synopsis SUSE Linux Enterprise Point of Sale 12 SP2 is installed AND Package Information salt-2016.11.4-46.7.1 is installed OR salt-minion-2016.11.4-46.7.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND Package Information NetworkManager-0.7.1_git20090811-3.20.5 is installed OR NetworkManager-glib-0.7.1_git20090811-3.20.5 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND sblim-sfcb-1.3.11-0.19.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND LibVNCServer-0.9.1-154.24 is installed Definition Synopsis SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information libldap-openssl1-2_4-2-2.4.26-0.30.2 is installed OR libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2 is installed OR libldap-openssl1-2_4-2-x86-2.4.26-0.30.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information MozillaFirefox-31.1.0esr-1 is installed OR MozillaFirefox-translations-31.1.0esr-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information libksba-1.3.0-18.1 is installed OR libksba8-1.3.0-18.1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libvorbis-doc-1.3.3-8 is installed OR libvorbis0-1.3.3-8 is installed OR libvorbis0-32bit-1.3.3-8 is installed OR libvorbisenc2-1.3.3-8 is installed OR libvorbisenc2-32bit-1.3.3-8 is installed OR libvorbisfile3-1.3.3-8 is installed OR libvorbisfile3-32bit-1.3.3-8 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-38.8 is installed OR aaa_base-extras-13.2+git20140911.61c1681-38.8 is installed Definition Synopsis SUSE Linux Enterprise Server 12-LTSS is installed AND Package Information apache2-2.4.10-14.17.1 is installed OR apache2-doc-2.4.10-14.17.1 is installed OR apache2-example-pages-2.4.10-14.17.1 is installed OR apache2-prefork-2.4.10-14.17.1 is installed OR apache2-utils-2.4.10-14.17.1 is installed OR apache2-worker-2.4.10-14.17.1 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information dracut-044-108 is installed OR dracut-fips-044-108 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND Package Information gegl-0.2.0-10.3.3 is installed OR gegl-devel-0.2.0-10.3.3 is installed OR libgegl-0_2-0-0.2.0-10.3.3 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND dia-0.97.3-15 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information ImageMagick-6.8.8.1-70 is installed OR ImageMagick-devel-6.8.8.1-70 is installed OR libMagick++-6_Q16-3-6.8.8.1-70 is installed OR libMagick++-devel-6.8.8.1-70 is installed OR perl-PerlMagick-6.8.8.1-70 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND LibVNCServer-devel-0.9.9-17.5 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.418-11.1 is installed OR flash-player-gnome-11.2.202.418-11.1 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information kernel-default-3.12.59-60.41.2 is installed OR kernel-default-extra-3.12.59-60.41.2 is installed Definition Synopsis SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information libpcrecpp0-8.39-5.1 is installed OR libpcrecpp0-32bit-8.39-5.1 is installed OR pcre-8.39-5.1 is installed
BACK