Oval Definition:oval:org.opensuse.security:def:67492
Revision Date:2020-12-01Version:1
Title:Security update for rubygem-puma (Moderate)
Description:

This update for rubygem-puma to version 4.3.5 fixes the following issues:

- CVE-2020-11077: Fixed a HTTP smuggling issue related to proxy usage (bsc#1172175). - CVE-2020-11076: Fixed a HTTP smuggling issue when using an invalid transfer-encoding header (bsc#1172176). - Disabled TLSv1.0 and TLSv1.1 (jsc#SLE-6965).
Family:unixClass:patch
Status:Reference(s):1172175
1172176
CVE-2014-0172
CVE-2014-9447
CVE-2020-11076
CVE-2020-11077
SUSE-SU-2020:1919-1
Platform(s):SUSE Linux Enterprise High Availability 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise High Availability 15 SP2 is installed
  • AND Package Information
  • ruby2.5-rubygem-puma-4.3.5-3.3 is installed
  • OR rubygem-puma-4.3.5-3.3 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
  • AND Package Information
  • elfutils-0.168-2 is installed
  • OR elfutils-lang-0.168-2 is installed
  • OR libasm-devel-0.168-2 is installed
  • OR libasm1-0.168-2 is installed
  • OR libdw-devel-0.168-2 is installed
  • OR libdw1-0.168-2 is installed
  • OR libdw1-32bit-0.168-2 is installed
  • OR libebl-devel-0.168-2 is installed
  • OR libebl-plugins-0.168-2 is installed
  • OR libebl-plugins-32bit-0.168-2 is installed
  • OR libelf-devel-0.168-2 is installed
  • OR libelf1-0.168-2 is installed
  • OR libelf1-32bit-0.168-2 is installed
    • BACK