Oval Definition:oval:org.opensuse.security:def:60939
Revision Date:2020-12-01Version:1
Title:Security update for rubygem-actionpack-4_2 (Moderate)
Description:

This update for rubygem-actionpack-4_2 fixes the following issues:

Security issues fixed:

- CVE-2019-5418: Fixed a file content disclosure vulnerability in Action View which could be exploited via specially crafted accept headers in combination with calls to render file (bsc#1129272). - CVE-2019-5419: Fixed a resource exhaustion issue in Action View which could make the server unable to process requests (bsc#1129271).
Family:unixClass:patch
Status:Reference(s):1009966
1013712
1063269
1073313
1093414
1099497
1109105
1111479
1111480
1112229
1117022
1117274
1117313
1117327
1117331
1127367
1127369
1127370
1129271
1129272
1132665
1149792
1150734
1157198
1157763
1159856
1159858
1159860
1160250
1160251
1160937
1163985
1166238
1167231
1168930
1169605
1169786
1169936
1170302
1170741
1170939
1173576
1173613
1174910
1174913
1177943
910252
910253
913650
913651
917152
996511
CVE-2014-8116
CVE-2014-8117
CVE-2014-9620
CVE-2014-9621
CVE-2014-9653
CVE-2016-9798
CVE-2017-17740
CVE-2018-10860
CVE-2018-17183
CVE-2018-17961
CVE-2018-18073
CVE-2018-18284
CVE-2018-19409
CVE-2018-19475
CVE-2018-19476
CVE-2018-19477
CVE-2019-15691
CVE-2019-15692
CVE-2019-15693
CVE-2019-15694
CVE-2019-15695
CVE-2019-15961
CVE-2019-20503
CVE-2019-3688
CVE-2019-3690
CVE-2019-5418
CVE-2019-5419
CVE-2019-9208
CVE-2019-9209
CVE-2019-9214
CVE-2020-11008
CVE-2020-12402
CVE-2020-12415
CVE-2020-12416
CVE-2020-12417
CVE-2020-12418
CVE-2020-12419
CVE-2020-12420
CVE-2020-12421
CVE-2020-12422
CVE-2020-12423
CVE-2020-12424
CVE-2020-12425
CVE-2020-12426
CVE-2020-14361
CVE-2020-14362
CVE-2020-14779
CVE-2020-14781
CVE-2020-14782
CVE-2020-14792
CVE-2020-14796
CVE-2020-14797
CVE-2020-14798
CVE-2020-14803
CVE-2020-1720
CVE-2020-5260
CVE-2020-6805
CVE-2020-6806
CVE-2020-6807
CVE-2020-6811
CVE-2020-6812
CVE-2020-6814
SUSE-SU-2017:3048-1
SUSE-SU-2018:2385-1
SUSE-SU-2018:4150-1
SUSE-SU-2019:0688-1
SUSE-SU-2019:0915-1
SUSE-SU-2020:0159-1
SUSE-SU-2020:0715-1
SUSE-SU-2020:0717-1
SUSE-SU-2020:1899-1
SUSE-SU-2020:2401-1
SUSE-SU-2020:3310-1
Platform(s):openSUSE Leap 15.1
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • tomcat-9.0.21-lp151.3.3 is installed
  • OR tomcat-admin-webapps-9.0.21-lp151.3.3 is installed
  • OR tomcat-docs-webapp-9.0.21-lp151.3.3 is installed
  • OR tomcat-el-3_0-api-9.0.21-lp151.3.3 is installed
  • OR tomcat-embed-9.0.21-lp151.3.3 is installed
  • OR tomcat-javadoc-9.0.21-lp151.3.3 is installed
  • OR tomcat-jsp-2_3-api-9.0.21-lp151.3.3 is installed
  • OR tomcat-jsvc-9.0.21-lp151.3.3 is installed
  • OR tomcat-lib-9.0.21-lp151.3.3 is installed
  • OR tomcat-servlet-4_0-api-9.0.21-lp151.3.3 is installed
  • OR tomcat-webapps-9.0.21-lp151.3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • file-5.22-10.3 is installed
  • OR file-magic-5.22-10.3 is installed
  • OR libmagic1-5.22-10.3 is installed
  • OR libmagic1-32bit-5.22-10.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • MozillaFirefox-78.0.1-112.3 is installed
  • OR MozillaFirefox-branding-SLE-78-35.3 is installed
  • OR MozillaFirefox-devel-78.0.1-112.3 is installed
  • OR MozillaFirefox-translations-common-78.0.1-112.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • git-2.26.2-27.36 is installed
  • OR git-core-2.26.2-27.36 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • libecpg6-10.12-1.18 is installed
  • OR libpq5-10.12-1.18 is installed
  • OR libpq5-32bit-10.12-1.18 is installed
  • OR postgresql10-10.12-1.18 is installed
  • OR postgresql10-contrib-10.12-1.18 is installed
  • OR postgresql10-docs-10.12-1.18 is installed
  • OR postgresql10-libs-10.12-1.18 is installed
  • OR postgresql10-plperl-10.12-1.18 is installed
  • OR postgresql10-plpython-10.12-1.18 is installed
  • OR postgresql10-pltcl-10.12-1.18 is installed
  • OR postgresql10-server-10.12-1.18 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • ghostscript-9.26-23.16 is installed
  • OR ghostscript-x11-9.26-23.16 is installed
  • OR libspectre-0.2.7-12.4 is installed
  • OR libspectre1-0.2.7-12.4 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND Package Information
  • freeradius-server-3.0.15-2.8 is installed
  • OR freeradius-server-doc-3.0.15-2.8 is installed
  • OR freeradius-server-krb5-3.0.15-2.8 is installed
  • OR freeradius-server-ldap-3.0.15-2.8 is installed
  • OR freeradius-server-libs-3.0.15-2.8 is installed
  • OR freeradius-server-mysql-3.0.15-2.8 is installed
  • OR freeradius-server-perl-3.0.15-2.8 is installed
  • OR freeradius-server-postgresql-3.0.15-2.8 is installed
  • OR freeradius-server-python-3.0.15-2.8 is installed
  • OR freeradius-server-sqlite-3.0.15-2.8 is installed
  • OR freeradius-server-utils-3.0.15-2.8 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • kernel-default-4.12.14-95.57 is installed
  • OR kernel-default-base-4.12.14-95.57 is installed
  • OR kernel-default-devel-4.12.14-95.57 is installed
  • OR kernel-devel-4.12.14-95.57 is installed
  • OR kernel-macros-4.12.14-95.57 is installed
  • OR kernel-source-4.12.14-95.57 is installed
  • OR kernel-syms-4.12.14-95.57 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-actionpack-4_2-4.2.9-7.6 is installed
  • OR rubygem-actionpack-4_2-4.2.9-7.6 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND Package Information
  • kernel-default-4.12.14-95.60 is installed
  • OR kernel-default-base-4.12.14-95.60 is installed
  • OR kernel-default-devel-4.12.14-95.60 is installed
  • OR kernel-devel-4.12.14-95.60 is installed
  • OR kernel-macros-4.12.14-95.60 is installed
  • OR kernel-source-4.12.14-95.60 is installed
  • OR kernel-syms-4.12.14-95.60 is installed
    • BACK