OVAL Reference oval:org.opensuse.security:def:58251

Oval Definition:

oval:org.opensuse.security:def:58251

Revision Date:	2020-12-01	Version:	1
Title:	Security update for rubygem-actionpack-4_2 (Moderate)
Description:	This update for rubygem-actionpack-4_2 fixes the following issues: Security issues fixed: - CVE-2019-5418: Fixed a file content disclosure vulnerability in Action View which could be exploited via specially crafted accept headers in combination with calls to render file (bsc#1129272). - CVE-2019-5419: Fixed a resource exhaustion issue in Action View which could make the server unable to process requests (bsc#1129271).
Family:	unix	Class:	patch
Status:		Reference(s):	1015119 1027519 1033447 1033448 1040170 1042803 1057358 1059777 1061076 1061077 1061080 1061081 1061082 1061084 1061086 1061087 1073230 1076017 1079405 1083488 1085114 1085447 1092885 1103040 1104457 1110723 1111622 1121571 1121816 1121818 1121821 1122668 1129271 1129272 1132728 1132729 1132732 1132734 1134718 1156275 1160968 1165787 1169511 1171352 1172277 1172515 1174157 1174955 1175259 1176315 1177155 CVE-2016-8745 CVE-2017-13166 CVE-2017-15588 CVE-2017-15589 CVE-2017-15590 CVE-2017-15591 CVE-2017-15592 CVE-2017-15593 CVE-2017-15594 CVE-2017-15595 CVE-2017-5526 CVE-2017-5647 CVE-2017-5648 CVE-2017-9083 CVE-2017-9406 CVE-2018-1000004 CVE-2018-1068 CVE-2018-14680 CVE-2018-14681 CVE-2018-14682 CVE-2018-15378 CVE-2018-18074 CVE-2018-20685 CVE-2018-3639 CVE-2018-7566 CVE-2019-10245 CVE-2019-14869 CVE-2019-17639 CVE-2019-2602 CVE-2019-2684 CVE-2019-2697 CVE-2019-2698 CVE-2019-2949 CVE-2019-5418 CVE-2019-5419 CVE-2019-6109 CVE-2019-6110 CVE-2019-6111 CVE-2020-10188 CVE-2020-14556 CVE-2020-14577 CVE-2020-14578 CVE-2020-14579 CVE-2020-14581 CVE-2020-14583 CVE-2020-14593 CVE-2020-14621 CVE-2020-15708 CVE-2020-17507 CVE-2020-25637 CVE-2020-2654 CVE-2020-2754 CVE-2020-2755 CVE-2020-2756 CVE-2020-2757 CVE-2020-2781 CVE-2020-2800 CVE-2020-2803 CVE-2020-2805 CVE-2020-2830 SUSE-SU-2017:1229-1 SUSE-SU-2017:1672-1 SUSE-SU-2017:2864-1 SUSE-SU-2018:1021-1 SUSE-SU-2018:3436-1 SUSE-SU-2019:0915-1 SUSE-SU-2019:2983-1 SUSE-SU-2020:0555-1 SUSE-SU-2020:1533-1 SUSE-SU-2020:1685-1 SUSE-SU-2020:2461-1 SUSE-SU-2020:2760-1 SUSE-SU-2020:3143-1
Platform(s):	openSUSE Leap 15.0 openSUSE Leap 15.1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP2-BCL SUSE Linux Enterprise Server 12 SP2-ESPOS SUSE Linux Enterprise Server 12 SP2-LTSS SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 7 SUSE OpenStack Cloud 8 SUSE OpenStack Cloud Crowbar 8	Product(s):
Definition Synopsis
openSUSE Leap 15.0 is installed AND Package Information accountsservice-0.6.45-lp150.2 is installed OR accountsservice-lang-0.6.45-lp150.2 is installed OR libaccountsservice0-0.6.45-lp150.2 is installed OR typelib-1_0-AccountsService-1_0-0.6.45-lp150.2 is installed
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information expat-2.2.5-lp151.3.3 is installed OR libexpat-devel-2.2.5-lp151.3.3 is installed OR libexpat-devel-32bit-2.2.5-lp151.3.3 is installed OR libexpat1-2.2.5-lp151.3.3 is installed OR libexpat1-32bit-2.2.5-lp151.3.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information libpoppler44-0.24.4-14.3 is installed OR poppler-0.24.4-14.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-BCL is installed AND clamav-0.100.2-33.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-ESPOS is installed AND Package Information qemu-2.6.2-41.40 is installed OR qemu-block-curl-2.6.2-41.40 is installed OR qemu-block-rbd-2.6.2-41.40 is installed OR qemu-block-ssh-2.6.2-41.40 is installed OR qemu-guest-agent-2.6.2-41.40 is installed OR qemu-ipxe-1.0.0-41.40 is installed OR qemu-kvm-2.6.2-41.40 is installed OR qemu-lang-2.6.2-41.40 is installed OR qemu-seabios-1.9.1-41.40 is installed OR qemu-sgabios-8-41.40 is installed OR qemu-tools-2.6.2-41.40 is installed OR qemu-vgabios-1.9.1-41.40 is installed OR qemu-x86-2.6.2-41.40 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP2-LTSS is installed AND Package Information kgraft-patch-4_4_59-92_24-default-9-2 is installed OR kgraft-patch-SLE12-SP2_Update_9-9-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libasan2-5.3.1+r233831-12 is installed OR libasan2-32bit-5.3.1+r233831-12 is installed OR libffi4-5.3.1+r233831-12 is installed OR libffi4-32bit-5.3.1+r233831-12 is installed OR libmpx0-5.3.1+r233831-12 is installed OR libmpx0-32bit-5.3.1+r233831-12 is installed OR libmpxwrappers0-5.3.1+r233831-12 is installed OR libmpxwrappers0-32bit-5.3.1+r233831-12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND Package Information libopenssl-devel-1.0.2j-60.55 is installed OR libopenssl1_0_0-1.0.2j-60.55 is installed OR libopenssl1_0_0-32bit-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-1.0.2j-60.55 is installed OR libopenssl1_0_0-hmac-32bit-1.0.2j-60.55 is installed OR openssl-1.0.2j-60.55 is installed OR openssl-doc-1.0.2j-60.55 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information tomcat-8.0.53-29.27 is installed OR tomcat-admin-webapps-8.0.53-29.27 is installed OR tomcat-docs-webapp-8.0.53-29.27 is installed OR tomcat-el-3_0-api-8.0.53-29.27 is installed OR tomcat-javadoc-8.0.53-29.27 is installed OR tomcat-jsp-2_3-api-8.0.53-29.27 is installed OR tomcat-lib-8.0.53-29.27 is installed OR tomcat-servlet-3_1-api-8.0.53-29.27 is installed OR tomcat-webapps-8.0.53-29.27 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information glib2-2.48.2-12.15 is installed OR glib2-lang-2.48.2-12.15 is installed OR glib2-tools-2.48.2-12.15 is installed OR libgio-2_0-0-2.48.2-12.15 is installed OR libgio-2_0-0-32bit-2.48.2-12.15 is installed OR libglib-2_0-0-2.48.2-12.15 is installed OR libglib-2_0-0-32bit-2.48.2-12.15 is installed OR libgmodule-2_0-0-2.48.2-12.15 is installed OR libgmodule-2_0-0-32bit-2.48.2-12.15 is installed OR libgobject-2_0-0-2.48.2-12.15 is installed OR libgobject-2_0-0-32bit-2.48.2-12.15 is installed OR libgthread-2_0-0-2.48.2-12.15 is installed OR libgthread-2_0-0-32bit-2.48.2-12.15 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information ovmf-2017+git1492060560.b6d11d7c46-4.12 is installed OR ovmf-tools-2017+git1492060560.b6d11d7c46-4.12 is installed OR qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.12 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND Package Information libXp6-1.0.2-3 is installed OR libXp6-32bit-1.0.2-3 is installed
Definition Synopsis
SUSE OpenStack Cloud 7 is installed AND Package Information ruby2.1-rubygem-actionpack-4_2-4.2.9-7.6 is installed OR rubygem-actionpack-4_2-4.2.9-7.6 is installed
Definition Synopsis
SUSE OpenStack Cloud 8 is installed AND python-urllib3-1.22-5.6 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ghostscript-9.27-23.28 is installed OR ghostscript-x11-9.27-23.28 is installed

BACK