Oval Definition:oval:org.opensuse.security:def:61045
Revision Date:2020-12-01Version:1
Title:Security update for rubygem-activesupport-4_2 (Critical)
Description:

This update for rubygem-activesupport-4_2 fixes the following issues:

- CVE-2020-8165: Fixed deserialization of untrusted data in MemCacheStore potentially resulting in remote code execution (bsc#1172186)
Family:unixClass:patch
Status:Reference(s):1010201
1012382
1012523
1015336
1015337
1015340
1015342
1015343
1019675
1020412
1020645
1022595
1022607
1024346
1024373
1024376
1024412
1027519
1031717
1032150
1036489
1036800
1037404
1037838
1038299
1038444
1039542
1040073
1041873
1042037
1042268
1042957
1042977
1042978
1043017
1045160
1045404
1046054
1046107
1047901
1047989
1048317
1048327
1048356
1048575
1050060
1050231
1051406
1051635
1051987
1052384
1053309
1053919
1055272
1056003
1056365
1056427
1056587
1056596
1056652
1056979
1057079
1057199
1057406
1057820
1058413
1059639
1060333
1061041
1061756
1062496
1062835
1062941
1063026
1063349
1063516
1064206
1064320
1064591
1064597
1064606
1064701
1064926
1065101
1065180
1065600
1065639
1065692
1065717
1065866
1065959
1066045
1066175
1066192
1066213
1066223
1066285
1066382
1066470
1066471
1066472
1066573
1066606
1066629
1066660
1066696
1066767
1066812
1066974
1067105
1067132
1067225
1067494
1067734
1067735
1067888
1067906
1068671
1068978
1068980
1068982
1069152
1069250
1069270
1069277
1069484
1069583
1069721
1069793
1069879
1069916
1069942
1069996
1070001
1070006
1070145
1070169
1070404
1070535
1070767
1070771
1070805
1070825
1070964
1071693
1071694
1071695
1071833
1072589
1074562
1090296
1090822
1090823
1092631
1116574
1123156
1126230
1133037
1136082
1141619
1145092
1146873
1149811
1157607
1160024
1160467
1160468
1161066
1161096
1161799
1162553
1163018
1166240
1170940
1171670
1171921
1171960
1171961
1171963
1172186
1172265
1172405
1177158
744692
789311
964944
966170
966172
969470
979928
989261
996376
CVE-2017-1000410
CVE-2017-11600
CVE-2017-12193
CVE-2017-14867
CVE-2017-15115
CVE-2017-16528
CVE-2017-16536
CVE-2017-16537
CVE-2017-16645
CVE-2017-16646
CVE-2017-16994
CVE-2017-17448
CVE-2017-17449
CVE-2017-17450
CVE-2017-7482
CVE-2017-7659
CVE-2017-8824
CVE-2017-8872
CVE-2017-9103
CVE-2017-9104
CVE-2017-9105
CVE-2017-9106
CVE-2017-9107
CVE-2017-9108
CVE-2017-9109
CVE-2017-9789
CVE-2018-10981
CVE-2018-10982
CVE-2018-13785
CVE-2018-3136
CVE-2018-3139
CVE-2018-3149
CVE-2018-3169
CVE-2018-3180
CVE-2018-3214
CVE-2018-3639
CVE-2019-1010006
CVE-2019-10208
CVE-2019-11459
CVE-2019-12068
CVE-2019-14896
CVE-2019-14897
CVE-2019-15890
CVE-2019-6778
CVE-2020-10753
CVE-2020-14355
CVE-2020-1711
CVE-2020-1983
CVE-2020-6796
CVE-2020-6797
CVE-2020-6798
CVE-2020-6799
CVE-2020-6800
CVE-2020-7039
CVE-2020-8022
CVE-2020-8165
CVE-2020-8608
SUSE-SU-2017:2141-1
SUSE-SU-2017:2747-1
SUSE-SU-2017:3398-1
SUSE-SU-2018:0261-1
SUSE-SU-2018:1456-1
SUSE-SU-2018:3933-1
SUSE-SU-2020:0384-1
SUSE-SU-2020:1612-1
SUSE-SU-2020:2929-1
Platform(s):openSUSE Leap 15.1
openSUSE Leap 15.2
SUSE Linux Enterprise Server 12 SP3
SUSE Linux Enterprise Server 12 SP3-BCL
SUSE Linux Enterprise Server 12 SP3-ESPOS
SUSE Linux Enterprise Server 12 SP3-LTSS
SUSE Linux Enterprise Server 12 SP3-TERADATA
SUSE Linux Enterprise Server 12 SP4
SUSE Linux Enterprise Server 12 SP4-ESPOS
SUSE Linux Enterprise Server 12 SP4-LTSS
SUSE OpenStack Cloud 9
SUSE OpenStack Cloud Crowbar 8
SUSE OpenStack Cloud Crowbar 9
Product(s):
Definition Synopsis
  • openSUSE Leap 15.1 is installed
  • AND Package Information
  • chromedriver-75.0.3770.90-2 is installed
  • OR chromium-75.0.3770.90-2 is installed
    • Definition Synopsis
  • openSUSE Leap 15.2 is installed
  • AND Package Information
  • MozillaFirefox-78.1.0-lp152.2.15 is installed
  • OR MozillaFirefox-branding-upstream-78.1.0-lp152.2.15 is installed
  • OR MozillaFirefox-buildsymbols-78.1.0-lp152.2.15 is installed
  • OR MozillaFirefox-devel-78.1.0-lp152.2.15 is installed
  • OR MozillaFirefox-translations-common-78.1.0-lp152.2.15 is installed
  • OR MozillaFirefox-translations-other-78.1.0-lp152.2.15 is installed
  • OR gstreamer-plugin-pipewire-0.3.6-lp152.2.3 is installed
  • OR libpipewire-0_3-0-0.3.6-lp152.2.3 is installed
  • OR pipewire-0.3.6-lp152.2.3 is installed
  • OR pipewire-devel-0.3.6-lp152.2.3 is installed
  • OR pipewire-doc-0.3.6-lp152.2.3 is installed
  • OR pipewire-libjack-0_3-0.3.6-lp152.2.3 is installed
  • OR pipewire-libpulse-0_3-0.3.6-lp152.2.3 is installed
  • OR pipewire-modules-0.3.6-lp152.2.3 is installed
  • OR pipewire-spa-plugins-0_2-0.3.6-lp152.2.3 is installed
  • OR pipewire-spa-tools-0.3.6-lp152.2.3 is installed
  • OR pipewire-tools-0.3.6-lp152.2.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3 is installed
  • AND Package Information
  • libxml2-2.9.4-46.3 is installed
  • OR libxml2-2-2.9.4-46.3 is installed
  • OR libxml2-2-32bit-2.9.4-46.3 is installed
  • OR libxml2-doc-2.9.4-46.3 is installed
  • OR libxml2-tools-2.9.4-46.3 is installed
  • OR python-libxml2-2.9.4-46.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-BCL is installed
  • AND Package Information
  • adns-1.4-103.3 is installed
  • OR libadns1-1.4-103.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-ESPOS is installed
  • AND Package Information
  • postgresql96-9.6.15-3.29 is installed
  • OR postgresql96-contrib-9.6.15-3.29 is installed
  • OR postgresql96-docs-9.6.15-3.29 is installed
  • OR postgresql96-libs-9.6.15-3.29 is installed
  • OR postgresql96-plperl-9.6.15-3.29 is installed
  • OR postgresql96-plpython-9.6.15-3.29 is installed
  • OR postgresql96-pltcl-9.6.15-3.29 is installed
  • OR postgresql96-server-9.6.15-3.29 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-LTSS is installed
  • AND Package Information
  • kgraft-patch-4_4_180-94_100-default-5-2 is installed
  • OR kgraft-patch-SLE12-SP3_Update_27-5-2 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP3-TERADATA is installed
  • AND Package Information
  • evince-3.20.2-6.27 is installed
  • OR evince-browser-plugin-3.20.2-6.27 is installed
  • OR evince-lang-3.20.2-6.27 is installed
  • OR evince-plugin-djvudocument-3.20.2-6.27 is installed
  • OR evince-plugin-dvidocument-3.20.2-6.27 is installed
  • OR evince-plugin-pdfdocument-3.20.2-6.27 is installed
  • OR evince-plugin-psdocument-3.20.2-6.27 is installed
  • OR evince-plugin-tiffdocument-3.20.2-6.27 is installed
  • OR evince-plugin-xpsdocument-3.20.2-6.27 is installed
  • OR libevdocument3-4-3.20.2-6.27 is installed
  • OR libevview3-3-3.20.2-6.27 is installed
  • OR nautilus-evince-3.20.2-6.27 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4 is installed
  • AND coolkey-1.1.0-148.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-ESPOS is installed
  • AND Package Information
  • java-1_8_0-ibm-1.8.0_sr6.15-30.72 is installed
  • OR java-1_8_0-ibm-alsa-1.8.0_sr6.15-30.72 is installed
  • OR java-1_8_0-ibm-devel-1.8.0_sr6.15-30.72 is installed
  • OR java-1_8_0-ibm-plugin-1.8.0_sr6.15-30.72 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Server 12 SP4-LTSS is installed
  • AND Package Information
  • libzypp-16.21.2-2.45 is installed
  • OR libzypp-devel-16.21.2-2.45 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud 9 is installed
  • AND python-Werkzeug-0.14.1-3.3 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND Package Information
  • ruby2.1-rubygem-activesupport-4_2-4.2.9-7.9 is installed
  • OR rubygem-activesupport-4_2-4.2.9-7.9 is installed
    • Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 9 is installed
  • AND python-SQLAlchemy-1.2.10-3.3 is installed
    • BACK