Oval Definition:
oval:org.opensuse.security:def:67497
Revision Date
:
2020-12-01
Version
:
1
Title
:
Security update for rubygem-actionpack-5_1 (Important)
Description
:
This update for rubygem-actionpack-5_1 fixes the following issues:
- CVE-2020-8164: Possible Strong Parameters Bypass in ActionPack. There is a strong parameters bypass vector in ActionPack. (bsc#1172177)
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1172177
CVE-2012-1571
CVE-2014-3710
CVE-2014-8116
CVE-2014-8117
CVE-2017-1000249
CVE-2018-10360
CVE-2019-8905
CVE-2019-8906
CVE-2019-8907
CVE-2020-8164
SUSE-SU-2020:2710-1
Platform(s)
:
SUSE Linux Enterprise High Availability 15 SP2
SUSE Linux Enterprise Module for Basesystem 15 SP1
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise High Availability 15 SP2 is installed
AND
Package Information
ruby2.5-rubygem-actionpack-5_1-5.1.4-3.6 is installed
OR
rubygem-actionpack-5_1-5.1.4-3.6 is installed
Definition Synopsis
SUSE Linux Enterprise Module for Basesystem 15 SP1 is installed
AND
Package Information
file-5.32-7.5 is installed
OR
file-devel-5.32-7.5 is installed
OR
file-magic-5.32-7.5 is installed
OR
libmagic1-5.32-7.5 is installed
OR
libmagic1-32bit-5.32-7.5 is installed
BACK