OVAL Reference oval:org.opensuse.security:def:60878

Oval Definition:

oval:org.opensuse.security:def:60878

Revision Date:	2020-12-01	Version:	1
Title:	Security update for rubygem-rails-html-sanitizer (Moderate)
Description:	This update for rubygem-rails-html-sanitizer fixes the following issues: - CVE-2018-3741: Fixed a XSS vulnerability due to insufficient filtering in scrub_attribute (bsc#1086598).
Family:	unix	Class:	patch
Status:		Reference(s):	1006984 1006989 1025046 1037811 1038444 1081024 1086598 1093664 1097560 1097824 1103809 1103810 1104076 1121567 1122292 1122299 1134395 1135603 1139073 1139358 1140575 1140577 1141035 1141780 1141782 1141783 1141785 1141787 1141789 1145604 1147021 1149792 1149961 1150733 1151021 1155988 1165631 1168930 1169605 1169786 1169936 1170302 1170741 1170939 1173369 1173659 1173942 1174247 1176262 977043 CVE-2017-18379 CVE-2017-2625 CVE-2017-8872 CVE-2018-1057 CVE-2018-11212 CVE-2018-12470 CVE-2018-12471 CVE-2018-12472 CVE-2018-16889 CVE-2018-20836 CVE-2018-3741 CVE-2018-7191 CVE-2019-10638 CVE-2019-10639 CVE-2019-11135 CVE-2019-11139 CVE-2019-1125 CVE-2019-11771 CVE-2019-11772 CVE-2019-11775 CVE-2019-14835 CVE-2019-16746 CVE-2019-20916 CVE-2019-2449 CVE-2019-2762 CVE-2019-2766 CVE-2019-2769 CVE-2019-2786 CVE-2019-2816 CVE-2019-3689 CVE-2019-4473 CVE-2019-7317 CVE-2020-11008 CVE-2020-11668 CVE-2020-14331 CVE-2020-15011 CVE-2020-1749 CVE-2020-5260 SUSE-SU-2017:2141-1 SUSE-SU-2018:0338-1 SUSE-SU-2018:1687-1 SUSE-SU-2019:2182-1 SUSE-SU-2019:2781-1 SUSE-SU-2019:2988-1 SUSE-SU-2020:1295-1 SUSE-SU-2020:2048-1 SUSE-SU-2020:2726-1
Platform(s):	openSUSE Leap 15.1 openSUSE Leap 15.1 NonFree SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP3-BCL SUSE Linux Enterprise Server 12 SP3-ESPOS SUSE Linux Enterprise Server 12 SP3-LTSS SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP4 SUSE OpenStack Cloud 9 SUSE OpenStack Cloud Crowbar 8 SUSE OpenStack Cloud Crowbar 9	Product(s):
Definition Synopsis
openSUSE Leap 15.1 is installed AND Package Information curl-7.60.0-lp151.5.3 is installed OR curl-mini-7.60.0-lp151.5.3 is installed OR libcurl-devel-7.60.0-lp151.5.3 is installed OR libcurl-devel-32bit-7.60.0-lp151.5.3 is installed OR libcurl-mini-devel-7.60.0-lp151.5.3 is installed OR libcurl4-7.60.0-lp151.5.3 is installed OR libcurl4-32bit-7.60.0-lp151.5.3 is installed OR libcurl4-mini-7.60.0-lp151.5.3 is installed
Definition Synopsis
openSUSE Leap 15.1 NonFree is installed AND opera-68.0.3618.104-lp151.2.18 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information libxml2-2.9.4-46.3 is installed OR libxml2-2-2.9.4-46.3 is installed OR libxml2-2-32bit-2.9.4-46.3 is installed OR libxml2-doc-2.9.4-46.3 is installed OR libxml2-tools-2.9.4-46.3 is installed OR python-libxml2-2.9.4-46.3 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-BCL is installed AND ucode-intel-20191112a-13.56 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-ESPOS is installed AND Package Information kgraft-patch-4_4_180-94_103-default-2-2 is installed OR kgraft-patch-SLE12-SP3_Update_28-2-2 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-LTSS is installed AND Package Information nfs-client-1.3.0-34.22 is installed OR nfs-doc-1.3.0-34.22 is installed OR nfs-kernel-server-1.3.0-34.22 is installed OR nfs-utils-1.3.0-34.22 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP3-TERADATA is installed AND Package Information res-signingkeys-3.0.37-52.23 is installed OR smt-3.0.37-52.23 is installed OR smt-support-3.0.37-52.23 is installed
Definition Synopsis
SUSE Linux Enterprise Server 12 SP4 is installed AND ant-1.9.4-3.3 is installed
Definition Synopsis
SUSE OpenStack Cloud 9 is installed AND Package Information openstack-manila-7.3.1~dev15-4.18 is installed OR openstack-manila-api-7.3.1~dev15-4.18 is installed OR openstack-manila-data-7.3.1~dev15-4.18 is installed OR openstack-manila-scheduler-7.3.1~dev15-4.18 is installed OR openstack-manila-share-7.3.1~dev15-4.18 is installed OR python-manila-7.3.1~dev15-4.18 is installed OR venv-openstack-manila-7.3.1~dev15-3.17 is installed OR venv-openstack-manila-x86_64-7.3.1~dev15-3.17 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 8 is installed AND Package Information ruby2.1-rubygem-rails-html-sanitizer-1.0.3-8.8 is installed OR rubygem-rails-html-sanitizer-1.0.3-8.8 is installed
Definition Synopsis
SUSE OpenStack Cloud Crowbar 9 is installed AND Package Information caasp-openstack-heat-templates-1.0+git.1560518045.ad7dc6d-3.3 is installed OR crowbar-6.0+git.1561125496.b7508480-3.6 is installed OR crowbar-core-6.0+git.1562154525.5e2983308-3.3 is installed OR crowbar-core-branding-upstream-6.0+git.1562154525.5e2983308-3.3 is installed OR crowbar-devel-6.0+git.1561125496.b7508480-3.6 is installed OR crowbar-ha-6.0+git.1560951093.4af1ee5-3.3 is installed OR crowbar-openstack-6.0+git.1562153583.4735fcf34-3.3 is installed OR documentation-suse-openstack-cloud-crowbar-deployment-9.20190621-3.3 is installed OR documentation-suse-openstack-cloud-crowbar-operations-9.20190621-3.3 is installed OR documentation-suse-openstack-cloud-supplement-9.20190621-3.3 is installed OR galera-python-clustercheck-0.0+git.1562242499.36b8b64-6.3 is installed OR grafana-5.3.3-3.3 is installed OR grafana-monasca-ui-drilldown-1.14.1~dev7-3.3 is installed OR openstack-ceilometer-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-central-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-compute-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-ipmi-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-agent-notification-11.0.2~dev13-3.3 is installed OR openstack-ceilometer-polling-11.0.2~dev13-3.3 is installed OR openstack-cinder-13.0.6~dev12-3.3 is installed OR openstack-cinder-api-13.0.6~dev12-3.3 is installed OR openstack-cinder-backup-13.0.6~dev12-3.3 is installed OR openstack-cinder-scheduler-13.0.6~dev12-3.3 is installed OR openstack-cinder-volume-13.0.6~dev12-3.3 is installed OR openstack-dashboard-14.0.4~dev4-3.3 is installed OR openstack-designate-7.0.1~dev20-3.3 is installed OR openstack-designate-agent-7.0.1~dev20-3.3 is installed OR openstack-designate-api-7.0.1~dev20-3.3 is installed OR openstack-designate-central-7.0.1~dev20-3.3 is installed OR openstack-designate-producer-7.0.1~dev20-3.3 is installed OR openstack-designate-sink-7.0.1~dev20-3.3 is installed OR openstack-designate-worker-7.0.1~dev20-3.3 is installed OR openstack-heat-11.0.3~dev5-3.3 is installed OR openstack-heat-api-11.0.3~dev5-3.3 is installed OR openstack-heat-api-cfn-11.0.3~dev5-3.3 is installed OR openstack-heat-engine-11.0.3~dev5-3.3 is installed OR openstack-heat-plugin-heat_docker-11.0.3~dev5-3.3 is installed OR openstack-horizon-plugin-designate-ui-7.0.1~dev7-3.3 is installed OR openstack-horizon-plugin-heat-ui-1.4.1~dev4-4.3 is installed OR openstack-horizon-plugin-magnum-ui-5.0.2~dev9-3.3 is installed OR openstack-horizon-plugin-monasca-ui-1.14.1~dev7-3.3 is installed OR openstack-ironic-11.1.4~dev2-3.3 is installed OR openstack-ironic-api-11.1.4~dev2-3.3 is installed OR openstack-ironic-conductor-11.1.4~dev2-3.3 is installed OR openstack-ironic-python-agent-3.3.2~dev13-3.3 is installed OR openstack-keystone-14.1.1~dev7-3.3 is installed OR openstack-magnum-7.1.1~dev24-3.3 is installed OR openstack-magnum-api-7.1.1~dev24-3.3 is installed OR openstack-magnum-conductor-7.1.1~dev24-3.3 is installed OR openstack-manila-7.3.1~dev2-4.3 is installed OR openstack-manila-api-7.3.1~dev2-4.3 is installed OR openstack-manila-data-7.3.1~dev2-4.3 is installed OR openstack-manila-scheduler-7.3.1~dev2-4.3 is installed OR openstack-manila-share-7.3.1~dev2-4.3 is installed OR openstack-monasca-agent-2.8.1~dev10-3.3 is installed OR openstack-monasca-notification-1.14.1~dev8-6.3 is installed OR openstack-neutron-13.0.4~dev89-3.3 is installed OR openstack-neutron-dhcp-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-fwaas-13.0.2~dev14-3.3 is installed OR openstack-neutron-gbp-5.0.1~dev443-3.3 is installed OR openstack-neutron-ha-tool-13.0.4~dev89-3.3 is installed OR openstack-neutron-l3-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-lbaas-13.0.1~dev12-3.3 is installed OR openstack-neutron-lbaas-agent-13.0.1~dev12-3.3 is installed OR openstack-neutron-linuxbridge-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-macvtap-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-metadata-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-metering-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-openvswitch-agent-13.0.4~dev89-3.3 is installed OR openstack-neutron-server-13.0.4~dev89-3.3 is installed OR openstack-neutron-vpnaas-13.0.2~dev4-3.3 is installed OR openstack-neutron-vyatta-agent-13.0.2~dev4-3.3 is installed OR openstack-nova-18.2.2~dev9-3.3 is installed OR openstack-nova-api-18.2.2~dev9-3.3 is installed OR openstack-nova-cells-18.2.2~dev9-3.3 is installed OR openstack-nova-compute-18.2.2~dev9-3.3 is installed OR openstack-nova-conductor-18.2.2~dev9-3.3 is installed OR openstack-nova-console-18.2.2~dev9-3.3 is installed OR openstack-nova-novncproxy-18.2.2~dev9-3.3 is installed OR openstack-nova-placement-api-18.2.2~dev9-3.3 is installed OR openstack-nova-scheduler-18.2.2~dev9-3.3 is installed OR openstack-nova-serialproxy-18.2.2~dev9-3.3 is installed OR openstack-nova-vncproxy-18.2.2~dev9-3.3 is installed OR openstack-octavia-3.1.2~dev2-3.3 is installed OR openstack-octavia-amphora-agent-3.1.2~dev2-3.3 is installed OR openstack-octavia-api-3.1.2~dev2-3.3 is installed OR openstack-octavia-health-manager-3.1.2~dev2-3.3 is installed OR openstack-octavia-housekeeping-3.1.2~dev2-3.3 is installed OR openstack-octavia-worker-3.1.2~dev2-3.3 is installed OR python-barbican-tempest-plugin-0.1.0-4.3 is installed OR python-ceilometer-11.0.2~dev13-3.3 is installed OR python-cinder-13.0.6~dev12-3.3 is installed OR python-cinderclient-4.0.2-3.3 is installed OR python-cinderclient-doc-4.0.2-3.3 is installed OR python-designate-7.0.1~dev20-3.3 is installed OR python-heat-11.0.3~dev5-3.3 is installed OR python-horizon-14.0.4~dev4-3.3 is installed OR python-horizon-plugin-designate-ui-7.0.1~dev7-3.3 is installed OR python-horizon-plugin-heat-ui-1.4.1~dev4-4.3 is installed OR python-horizon-plugin-magnum-ui-5.0.2~dev9-3.3 is installed OR python-horizon-plugin-monasca-ui-1.14.1~dev7-3.3 is installed OR python-ironic-11.1.4~dev2-3.3 is installed OR python-ironicclient-2.5.2-4.3 is installed OR python-ironicclient-doc-2.5.2-4.3 is installed OR python-keystone-14.1.1~dev7-3.3 is installed OR python-magnum-7.1.1~dev24-3.3 is installed OR python-manila-7.3.1~dev2-4.3 is installed OR python-manila-tempest-plugin-0.1.0-3.3 is installed OR python-manilaclient-1.24.2-3.3 is installed OR python-manilaclient-doc-1.24.2-3.3 is installed OR python-monasca-agent-2.8.1~dev10-3.3 is installed OR python-monasca-notification-1.14.1~dev8-6.3 is installed OR python-neutron-13.0.4~dev89-3.3 is installed OR python-neutron-fwaas-13.0.2~dev14-3.3 is installed OR python-neutron-gbp-5.0.1~dev443-3.3 is installed OR python-neutron-lbaas-13.0.1~dev12-3.3 is installed OR python-neutron-vpnaas-13.0.2~dev4-3.3 is installed OR python-nova-18.2.2~dev9-3.3 is installed OR python-octavia-3.1.2~dev2-3.3 is installed OR python-openstack_auth-14.0.4~dev4-3.3 is installed OR python-os-brick-2.5.7-3.3 is installed OR python-os-brick-common-2.5.7-3.3 is installed OR python-oslo.db-4.40.2-3.3 is installed OR python-proliantutils-2.8.4-1 is installed OR supportutils-plugin-suse-openstack-cloud-9.0.1562324636.e7046a3-1 is installed

BACK