Oval Definition:oval:org.opensuse.security:def:52346
Revision Date:2020-12-01Version:1
Title:Security update for rubygem-bundler (Moderate)
Description:

This update for rubygem-bundler fixes the following issue:

- CVE-2019-3881: Fixed insecure permissions on a directory in /tmp/ that allowed malicious code execution (bsc#1143436).
Family:unixClass:patch
Status:Reference(s):1046303
1050244
1050549
1051510
1051858
1061840
1065600
1065729
1071995
1083647
1085030
1086301
1086313
1086314
1088810
1090888
1103989
1103990
1103991
1104353
1104427
1104745
1105392
1109837
1111666
1112178
1112374
1112504
1113956
1114279
1114685
1115026
1118338
1118661
1123328
1124493
1125330
1126206
1127371
1127611
1127682
1129551
1129770
1129821
1130262
1133021
1133147
1134973
1140025
1142685
1143436
1143959
1144162
1144333
1146519
1146544
1151548
1151910
1151927
1152107
1152631
1153535
1153917
1154243
1154601
1154768
1154916
1155331
1155334
1155689
1156259
1156286
1156462
1157155
1157157
1157169
1157303
1157424
1157480
1157692
1157853
1157895
1157908
1157966
1158013
1158021
1158026
1158071
1158094
1158132
1158381
1158533
1158637
1158638
1158639
1158640
1158641
1158643
1158644
1158645
1158646
1158647
1158649
1158651
1158652
1158819
1158823
1158824
1158827
1158834
1158893
1158900
1158903
1158904
1158954
1159024
1159028
1159271
1159297
1159377
1159394
1159483
1159484
1159500
1159569
1159588
1159841
1159908
1159909
1159910
1159911
1159955
1160147
1160195
1160210
1160211
1160218
1160433
1160442
1160469
1160470
1160476
1160560
1160618
1160678
1160755
1160756
1160784
1160787
1160802
1160803
1160804
1160917
1160966
1160979
1161087
1161243
1161360
1161472
1161514
1161518
1161522
1161523
1161549
1161552
1161674
1161702
1161907
1161931
1161933
1161934
1161935
1161936
1161937
1162028
1162067
1162109
1162139
1162557
1162617
1162618
1162619
1162623
1162928
1162943
1163206
1163383
1163384
1163762
1163774
1163836
1163840
1163841
1163842
1163843
1163844
1163845
1163846
1163849
1163850
1163851
1163852
1163853
1163855
1163856
1163857
1163858
1163859
1163860
1163861
1163862
1163863
1163867
1163869
1163880
1163971
1164051
1164069
1164098
1164115
1164314
1164315
1164388
1164471
1164598
1164632
1164705
1164712
1164727
1164728
1164729
1164730
1164731
1164732
1164733
1164734
1164735
1172686
1173937
1174633
1174635
1174638
1176589
CVE-2004-2779
CVE-2007-4772
CVE-2007-6600
CVE-2008-2109
CVE-2009-0035
CVE-2009-0316
CVE-2009-4034
CVE-2009-4136
CVE-2010-1169
CVE-2010-1170
CVE-2010-3433
CVE-2010-3609
CVE-2010-4651
CVE-2011-1526
CVE-2011-4862
CVE-2012-0866
CVE-2012-0867
CVE-2012-0868
CVE-2012-2143
CVE-2012-2655
CVE-2012-3488
CVE-2012-3489
CVE-2013-0255
CVE-2013-1899
CVE-2013-1900
CVE-2013-1901
CVE-2013-6435
CVE-2014-0060
CVE-2014-0061
CVE-2014-0062
CVE-2014-0063
CVE-2014-0064
CVE-2014-0065
CVE-2014-0066
CVE-2014-0067
CVE-2014-8118
CVE-2015-1196
CVE-2015-1395
CVE-2015-1396
CVE-2015-2059
CVE-2015-3165
CVE-2015-3166
CVE-2015-3167
CVE-2015-5288
CVE-2015-5289
CVE-2015-8948
CVE-2016-0766
CVE-2016-0773
CVE-2016-5180
CVE-2016-5423
CVE-2016-5424
CVE-2016-6261
CVE-2016-6262
CVE-2016-6263
CVE-2017-1000381
CVE-2017-11550
CVE-2017-11551
CVE-2017-14062
CVE-2018-18335
CVE-2018-18356
CVE-2018-18506
CVE-2018-18509
CVE-2019-14615
CVE-2019-14896
CVE-2019-14897
CVE-2019-15213
CVE-2019-16746
CVE-2019-16994
CVE-2019-18808
CVE-2019-19036
CVE-2019-19045
CVE-2019-19051
CVE-2019-19054
CVE-2019-19066
CVE-2019-19318
CVE-2019-19319
CVE-2019-19332
CVE-2019-19338
CVE-2019-19447
CVE-2019-19523
CVE-2019-19526
CVE-2019-19527
CVE-2019-19532
CVE-2019-19533
CVE-2019-19535
CVE-2019-19537
CVE-2019-19767
CVE-2019-19927
CVE-2019-19965
CVE-2019-19966
CVE-2019-20054
CVE-2019-20095
CVE-2019-20096
CVE-2019-3820
CVE-2019-3881
CVE-2019-5785
CVE-2019-9788
CVE-2019-9790
CVE-2019-9791
CVE-2019-9792
CVE-2019-9793
CVE-2019-9794
CVE-2019-9795
CVE-2019-9796
CVE-2019-9801
CVE-2019-9810
CVE-2019-9813
CVE-2020-14345
CVE-2020-14346
CVE-2020-14347
CVE-2020-15095
CVE-2020-2732
CVE-2020-7053
CVE-2020-8252
CVE-2020-8428
CVE-2020-8648
CVE-2020-8992
SUSE-SU-2019:0853-1
SUSE-SU-2019:1459-1
SUSE-SU-2020:2829-1
Platform(s):openSUSE Leap 15.0
openSUSE Leap 15.1
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Desktop 11 SP3
SUSE Linux Enterprise Desktop 11 SP4
SUSE Linux Enterprise Desktop 12
SUSE Linux Enterprise Desktop 12 SP1
SUSE Linux Enterprise Desktop 12 SP2
SUSE Linux Enterprise Desktop 12 SP3
SUSE Linux Enterprise Desktop 12 SP4
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server 12 SP1
SUSE Linux Enterprise Server 12 SP1-LTSS
SUSE Linux Enterprise Server 12 SP2
SUSE Linux Enterprise Server 12 SP2-BCL
SUSE Linux Enterprise Server 12 SP2-ESPOS
SUSE Linux Enterprise Server 12 SP2-LTSS
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server for SAP Applications 15
SUSE Linux Enterprise Workstation Extension 15
SUSE Linux Enterprise Workstation Extension 15 SP1
SUSE OpenStack Cloud 7
SUSE OpenStack Cloud 8
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • openSUSE Leap 15.0 is installed
  • AND Package Information
  • groff-1.22.3-lp150.3 is installed
  • OR groff-full-1.22.3-lp150.3 is installed
  • OR gxditview-1.22.3-lp150.3 is installed
    • Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • GraphicsMagick-1.3.29-lp151.4.3 is installed
  • OR GraphicsMagick-devel-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick++-Q16-12-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick++-devel-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick-Q16-3-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagick3-config-1.3.29-lp151.4.3 is installed
  • OR libGraphicsMagickWand-Q16-2-1.3.29-lp151.4.3 is installed
  • OR perl-GraphicsMagick-1.3.29-lp151.4.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP2 is installed
  • AND Package Information
  • libxml2-2.7.6-0.25 is installed
  • OR libxml2-32bit-2.7.6-0.25 is installed
  • OR libxml2-python-2.7.6-0.25 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP3 is installed
  • AND Package Information
  • compat-wireless-kmp-default-3.13_3.0.101_0.31-0.9 is installed
  • OR compat-wireless-kmp-pae-3.13_3.0.101_0.31-0.9 is installed
  • OR compat-wireless-kmp-xen-3.13_3.0.101_0.31-0.9 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 11 SP4 is installed
  • AND Package Information
  • xen-4.4.2_10-5 is installed
  • OR xen-doc-html-4.4.2_10-5 is installed
  • OR xen-kmp-default-4.4.2_10_3.0.101_63-5 is installed
  • OR xen-kmp-pae-4.4.2_10_3.0.101_63-5 is installed
  • OR xen-libs-4.4.2_10-5 is installed
  • OR xen-libs-32bit-4.4.2_10-5 is installed
  • OR xen-tools-4.4.2_10-5 is installed
  • OR xen-tools-domU-4.4.2_10-5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 is installed
  • AND Package Information
  • gvim-7.4.326-2 is installed
  • OR vim-7.4.326-2 is installed
  • OR vim-data-7.4.326-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP1 is installed
  • AND Package Information
  • rpm-4.11.2-10 is installed
  • OR rpm-32bit-4.11.2-10 is installed
  • OR rpm-build-4.11.2-10 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP2 is installed
  • AND Package Information
  • libecpg6-9.4.9-14 is installed
  • OR libpq5-9.4.9-14 is installed
  • OR libpq5-32bit-9.4.9-14 is installed
  • OR postgresql94-9.4.9-14 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND krb5-appl-clients-1.0.3-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP4 is installed
  • AND Package Information
  • alsa-1.0.27.2-15 is installed
  • OR libasound2-1.0.27.2-15 is installed
  • OR libasound2-32bit-1.0.27.2-15 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • ruby2.5-rubygem-bundler-doc-1.16.1-3.3 is installed
  • OR rubygem-bundler-1.16.1-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1 is installed
  • AND quagga-0.99.22.1-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP1-LTSS is installed
  • AND Package Information
  • kgraft-patch-3_12_69-60_64_32-default-8-2 is installed
  • OR kgraft-patch-3_12_69-60_64_32-xen-8-2 is installed
  • OR kgraft-patch-SLE12-SP1_Update_13-8-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2 is installed
  • AND perl-HTML-Parser-3.71-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-BCL is installed
  • AND Package Information
  • libopenssl-devel-1.0.2j-60.46 is installed
  • OR libopenssl1_0_0-1.0.2j-60.46 is installed
  • OR libopenssl1_0_0-32bit-1.0.2j-60.46 is installed
  • OR libopenssl1_0_0-hmac-1.0.2j-60.46 is installed
  • OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.46 is installed
  • OR openssl-1.0.2j-60.46 is installed
  • OR openssl-doc-1.0.2j-60.46 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-ESPOS is installed
  • AND Package Information
  • MozillaFirefox-52.9.0esr-109.38 is installed
  • OR MozillaFirefox-devel-52.9.0esr-109.38 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP2-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_121-92_80-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP2_Update_22-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND dstat-0.7.2-1 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • libjpeg-turbo-1.5.3-31.19 is installed
  • OR libjpeg62-62.2.0-31.19 is installed
  • OR libjpeg62-32bit-62.2.0-31.19 is installed
  • OR libjpeg62-turbo-1.5.3-31.19 is installed
  • OR libjpeg8-8.1.2-31.19 is installed
  • OR libjpeg8-32bit-8.1.2-31.19 is installed
  • OR libturbojpeg0-8.1.2-31.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_103-default-2-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ceph-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR ceph-common-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR libcephfs2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR librados2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR libradosstriper1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR librbd1-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR librgw2-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-cephfs-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-rados-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-rbd-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
  • OR python-rgw-12.2.7+git.1531910353.c0ef85b854-2.12 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND busybox-1.21.1-3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server for SAP Applications 15 is installed
  • AND Package Information
  • nodejs10-10.22.1-1.27 is installed
  • OR nodejs10-devel-10.22.1-1.27 is installed
  • OR nodejs10-docs-10.22.1-1.27 is installed
  • OR npm10-10.22.1-1.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 is installed
  • AND Package Information
  • gnome-shell-3.26.2+20180130.0d9c74212-4.19 is installed
  • OR gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.19 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Workstation Extension 15 SP1 is installed
  • AND Package Information
  • kernel-default-4.12.14-197.34 is installed
  • OR kernel-default-extra-4.12.14-197.34 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 7 is installed
  • AND Package Information
  • libdcerpc-atsvc0-4.2.4-28.29 is installed
  • OR samba-4.2.4-28.29 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 8 is installed
  • AND Package Information
  • java-1_7_1-ibm-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-alsa-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-jdbc-1.7.1_sr4.50-38.41 is installed
  • OR java-1_7_1-ibm-plugin-1.7.1_sr4.50-38.41 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-Django1-1.11.20-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • glibc-2.22-62.22 is installed
  • OR glibc-32bit-2.22-62.22 is installed
  • OR glibc-devel-2.22-62.22 is installed
  • OR glibc-devel-32bit-2.22-62.22 is installed
  • OR glibc-html-2.22-62.22 is installed
  • OR glibc-i18ndata-2.22-62.22 is installed
  • OR glibc-info-2.22-62.22 is installed
  • OR glibc-locale-2.22-62.22 is installed
  • OR glibc-locale-32bit-2.22-62.22 is installed
  • OR glibc-profile-2.22-62.22 is installed
  • OR glibc-profile-32bit-2.22-62.22 is installed
  • OR nscd-2.22-62.22 is installed
    • BACK