OVAL Reference oval:org.opensuse.security:def:5276

Oval Definition:

oval:org.opensuse.security:def:5276

Revision Date:	2020-12-02	Version:	1
Title:	Recommended update for ruby2.5 (Important)
Description:	This update for ruby2.5 toversion 2.5.7 fixes the following issues: ruby 2.5 was updated to version 2.5.7 - CVE-2020-8130: Fixed a command injection in intree copy of rake (bsc#1164804). - CVE-2019-16255: Fixed a code injection vulnerability of Shell#[] and Shell#test (bsc#1152990). - CVE-2019-16254: Fixed am HTTP response splitting in WEBrick (bsc#1152992). - CVE-2019-15845: Fixed a null injection vulnerability of File.fnmatch and File.fnmatch? (bsc#1152994). - CVE-2019-16201: Fixed a regular expression denial of service of WEBrick Digest access authentication (bsc#1152995). - CVE-2012-6708: Fixed an XSS in JQuery - CVE-2015-9251: Fixed an XSS in JQuery - Fixed unit tests (bsc#1140844) - Removed some unneeded test files (bsc#1162396).
Family:	unix	Class:	patch
Status:		Reference(s):	1140844 1152990 1152992 1152994 1152995 1162396 1164804 1171456 1171457 1171458 CVE-2008-1686 CVE-2009-2473 CVE-2009-2474 CVE-2009-2694 CVE-2009-2703 CVE-2009-3026 CVE-2009-3083 CVE-2009-3084 CVE-2009-3085 CVE-2009-3615 CVE-2009-4492 CVE-2010-0013 CVE-2010-0277 CVE-2010-0420 CVE-2010-0423 CVE-2010-0541 CVE-2010-0624 CVE-2010-1624 CVE-2010-2252 CVE-2010-2528 CVE-2010-2761 CVE-2010-3711 CVE-2010-4410 CVE-2010-4411 CVE-2010-4777 CVE-2011-0461 CVE-2011-1000 CVE-2011-1004 CVE-2011-1005 CVE-2011-1091 CVE-2011-3594 CVE-2011-3848 CVE-2011-3872 CVE-2011-4815 CVE-2012-0037 CVE-2012-1174 CVE-2012-2214 CVE-2012-3374 CVE-2012-3864 CVE-2012-3865 CVE-2012-3866 CVE-2012-3867 CVE-2012-4929 CVE-2012-6152 CVE-2012-6708 CVE-2013-0271 CVE-2013-0272 CVE-2013-0273 CVE-2013-0274 CVE-2013-1431 CVE-2013-3567 CVE-2013-4288 CVE-2013-4761 CVE-2013-4956 CVE-2013-6477 CVE-2013-6478 CVE-2013-6479 CVE-2013-6481 CVE-2013-6482 CVE-2013-6483 CVE-2013-6484 CVE-2013-6485 CVE-2013-6486 CVE-2013-6487 CVE-2014-0020 CVE-2014-2524 CVE-2014-3248 CVE-2014-3253 CVE-2014-3695 CVE-2014-3696 CVE-2014-3698 CVE-2014-6271 CVE-2014-6277 CVE-2014-6278 CVE-2014-7169 CVE-2014-7186 CVE-2014-7187 CVE-2014-9112 CVE-2014-9638 CVE-2014-9639 CVE-2014-9640 CVE-2015-6749 CVE-2015-9251 CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255 CVE-2020-10957 CVE-2020-10958 CVE-2020-10967 CVE-2020-8130 SUSE-SU-2020:0737-1 SUSE-SU-2020:1379-1
Platform(s):	openSUSE 13.1 openSUSE 13.1 NonFree SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 11 SP4 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP2 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Availability 12 SP3 SUSE Linux Enterprise High Availability 12 SP4 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise High Performance Computing 15-ESPOS SUSE Linux Enterprise High Performance Computing 15-LTSS SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Real Time Extension 12 SP2 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server 12-LTSS SUSE Linux Enterprise Server 15-LTSS SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE Linux Enterprise Workstation Extension 12 SUSE Linux Enterprise Workstation Extension 12 SP1 SUSE Linux Enterprise Workstation Extension 12 SP2 SUSE OpenStack Cloud 5	Product(s):
Definition Synopsis
SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 is installed AND haproxy-1.5.4-2.4.1 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information cups-1.3.9-8.46.52.2 is installed OR cups-client-1.3.9-8.46.52.2 is installed OR cups-libs-1.3.9-8.46.52.2 is installed OR cups-libs-32bit-1.3.9-8.46.52.2 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 11 SP4 is installed AND Package Information wpa_supplicant-0.7.1-6.17.4 is installed OR wpa_supplicant-gui-0.7.1-6.17.4 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 is installed AND puppet-3.6.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP1 is installed AND Package Information cpio-2.11-29 is installed OR cpio-lang-2.11-29 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP2 is installed AND Package Information aaa_base-13.2+git20140911.61c1681-28 is installed OR aaa_base-extras-13.2+git20140911.61c1681-28 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP3 is installed AND Package Information elfutils-0.158-6 is installed OR libasm1-0.158-6 is installed OR libdw1-0.158-6 is installed OR libdw1-32bit-0.158-6 is installed OR libebl1-0.158-6 is installed OR libebl1-32bit-0.158-6 is installed OR libelf1-0.158-6 is installed OR libelf1-32bit-0.158-6 is installed
Definition Synopsis
SUSE Linux Enterprise Desktop 12 SP4 is installed AND Package Information e2fsprogs-1.43.8-1 is installed OR libcom_err2-1.43.8-1 is installed OR libcom_err2-32bit-1.43.8-1 is installed OR libext2fs2-1.43.8-1 is installed
Definition Synopsis
SUSE Linux Enterprise for SAP 12 is installed AND Package Information kgraft-patch-3_12_60-52_49-default-2-2.2 is installed OR kgraft-patch-3_12_60-52_49-xen-2-2.2 is installed OR kgraft-patch-SLE12_Update_14-2-2.2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP2 is installed AND lighttpd-1.4.35-1 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP3 is installed AND fence-agents-4.0.25+git.1485179354.eb43835-2 is installed
Definition Synopsis
SUSE Linux Enterprise High Availability 12 SP4 is installed AND python-requests-2.11.1-6.28 is installed
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information apache-commons-daemon-1.0.15-6 is installed OR apache-commons-daemon-javadoc-1.0.15-6 is installed
Definition Synopsis
Release Information SUSE Linux Enterprise High Performance Computing 15-ESPOS is installed AND libruby2_5-2_5-2.5.7-4.8 is installed OR ruby2.5-2.5.7-4.8 is installed OR ruby2.5-devel-2.5.7-4.8 is installed OR ruby2.5-devel-extra-2.5.7-4.8 is installed OR ruby2.5-stdlib-2.5.7-4.8 is installed OR Package Information SUSE Linux Enterprise High Performance Computing 15-LTSS is installed AND libruby2_5-2_5-2.5.7-4.8 is installed OR ruby2.5-2.5.7-4.8 is installed OR ruby2.5-devel-2.5.7-4.8 is installed OR ruby2.5-devel-extra-2.5.7-4.8 is installed OR ruby2.5-stdlib-2.5.7-4.8 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_62-60_62-default-5-2 is installed OR kgraft-patch-3_12_62-60_62-xen-5-2 is installed OR kgraft-patch-SLE12-SP1_Update_7-5-2 is installed
Definition Synopsis
SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_82-6_6-default-1-2.1 is installed OR kgraft-patch-SLE12-SP3_Update_2-1-2.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information puppet-3.6.2-3 is installed OR puppet-server-3.6.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information containerd-0.2.4+gitr565_0366d7e-9.1 is installed OR docker-1.12.3-81.2 is installed OR ruby2.1-rubygem-docker-api-1.31.0-11.2 is installed OR ruby2.1-rubygem-excon-0.52.0-9.1 is installed OR rubygem-docker-api-1.31.0-11.2 is installed OR rubygem-excon-0.52.0-9.1 is installed OR runc-0.1.1+gitr2816_02f8fa7-9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Legacy Software 12 is installed AND syslog-ng-3.4.5-3 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-pycrypto-2.6.1-1 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information libpython3_4m1_0-3.4.1-2 is installed OR python3-base-3.4.1-2 is installed
Definition Synopsis
SUSE Linux Enterprise Real Time Extension 12 SP2 is installed AND Package Information cluster-md-kmp-rt-4.4.74-7.10 is installed OR cluster-network-kmp-rt-4.4.74-7.10 is installed OR dlm-kmp-rt-4.4.74-7.10 is installed OR gfs2-kmp-rt-4.4.74-7.10 is installed OR kernel-devel-rt-4.4.74-7.10 is installed OR kernel-rt-4.4.74-7.10 is installed OR kernel-rt-base-4.4.74-7.10 is installed OR kernel-rt-devel-4.4.74-7.10 is installed OR kernel-rt_debug-4.4.74-7.10 is installed OR kernel-rt_debug-devel-4.4.74-7.10 is installed OR kernel-source-rt-4.4.74-7.10 is installed OR kernel-syms-rt-4.4.74-7.10 is installed OR ocfs2-kmp-rt-4.4.74-7.10 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP2 is installed AND apache2-mod_jk-1.2.26-1.30.110 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information PackageKit-0.3.14-2.28.46 is installed OR PackageKit-lang-0.3.14-2.28.46 is installed OR hal-0.5.12-23.68.1 is installed OR hal-32bit-0.5.12-23.68.1 is installed OR hal-doc-0.5.12-23.68.1 is installed OR hal-x86-0.5.12-23.68.1 is installed OR libpackagekit-glib10-0.3.14-2.28.46 is installed
Definition Synopsis
SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information libapr-util1-1.3.4-12.22.23.1 is installed OR libapr-util1-32bit-1.3.4-12.22.23.1 is installed OR libapr-util1-dbd-sqlite3-1.3.4-12.22.23.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 is installed AND Package Information alsa-1.0.27.2-11 is installed OR alsa-docs-1.0.27.2-11 is installed OR libasound2-1.0.27.2-11 is installed OR libasound2-32bit-1.0.27.2-11 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information apache2-2.4.16-5 is installed OR apache2-doc-2.4.16-5 is installed OR apache2-example-pages-2.4.16-5 is installed OR apache2-prefork-2.4.16-5 is installed OR apache2-utils-2.4.16-5 is installed OR apache2-worker-2.4.16-5 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information bind-9.9.9P1-49.1 is installed OR bind-chrootenv-9.9.9P1-49.1 is installed OR bind-doc-9.9.9P1-49.1 is installed OR bind-libs-9.9.9P1-49.1 is installed OR bind-libs-32bit-9.9.9P1-49.1 is installed OR bind-utils-9.9.9P1-49.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information dbus-1-glib-0.100.2-3 is installed OR dbus-1-glib-32bit-0.100.2-3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12-LTSS is installed AND sudo-1.8.10p3-2.16.1 is installed
Definition Synopsis
SUSE Linux Enterprise Server 15-LTSS is installed AND Package Information dovecot23-2.3.10-4.22 is installed OR dovecot23-backend-mysql-2.3.10-4.22 is installed OR dovecot23-backend-pgsql-2.3.10-4.22 is installed OR dovecot23-backend-sqlite-2.3.10-4.22 is installed OR dovecot23-devel-2.3.10-4.22 is installed OR dovecot23-fts-2.3.10-4.22 is installed OR dovecot23-fts-lucene-2.3.10-4.22 is installed OR dovecot23-fts-solr-2.3.10-4.22 is installed OR dovecot23-fts-squat-2.3.10-4.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND Package Information postgresql94-9.4.15-21.13 is installed OR postgresql94-contrib-9.4.15-21.13 is installed OR postgresql94-docs-9.4.15-21.13 is installed OR postgresql94-server-9.4.15-21.13 is installed
Definition Synopsis
SUSE Linux Enterprise Server for SAP Applications 12 is installed AND Package Information bind-9.9.9P1-28.20 is installed OR bind-chrootenv-9.9.9P1-28.20 is installed OR bind-doc-9.9.9P1-28.20 is installed OR bind-libs-9.9.9P1-28.20 is installed OR bind-libs-32bit-9.9.9P1-28.20 is installed OR bind-utils-9.9.9P1-28.20 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND automake-1.10.1-4.131.9.1 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND libyaml-devel-0.1.6-7 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND Package Information NetworkManager-1.0.12-12 is installed OR NetworkManager-devel-1.0.12-12 is installed
Definition Synopsis
SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND Package Information ImageMagick-6.8.8.1-71.85 is installed OR ImageMagick-devel-6.8.8.1-71.85 is installed OR libMagick++-6_Q16-3-6.8.8.1-71.85 is installed OR libMagick++-devel-6.8.8.1-71.85 is installed OR perl-PerlMagick-6.8.8.1-71.85 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 is installed AND Package Information flash-player-11.2.202.616-126.1 is installed OR flash-player-gnome-11.2.202.616-126.1 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP1 is installed AND Package Information libvirt-1.2.18.4-11.7 is installed OR libvirt-client-32bit-1.2.18.4-11.7 is installed
Definition Synopsis
SUSE Linux Enterprise Workstation Extension 12 SP2 is installed AND Package Information ImageMagick-6.8.8.1-54.1 is installed OR libMagick++-6_Q16-3-6.8.8.1-54.1 is installed OR libMagickCore-6_Q16-1-32bit-6.8.8.1-54.1 is installed

BACK