Oval Definition:	oval:org.opensuse.security:def:72946
Revision Date: 2020-12-01 Version: 1 Title: Security update for rubygem-rack (Moderate) Description: This update for rubygem-rack to version 2.0.8 fixes the following issues: - CVE-2018-16471: Fixed a cross-site scripting (XSS) flaw via the scheme method on Rack::Request (bsc#1116600). - CVE-2019-16782: Fixed a possible information leak and session hijack vulnerability (bsc#1159548). Family: unix Class: patch Status: Reference(s): 1114828 1116600 1159548 CVE-2014-3636 CVE-2014-3637 CVE-2014-3639 CVE-2014-7824 CVE-2014-8148 CVE-2015-0245 CVE-2018-16471 CVE-2019-12749 CVE-2019-16782 SUSE-SU-2020:0359-1 Platform(s): SUSE Linux Enterprise High Availability 15 SP1 SUSE Linux Enterprise Module for Basesystem 15 SP2 Product(s): Definition Synopsis SUSE Linux Enterprise High Availability 15 SP1 is installed AND Package Information ruby2.5-rubygem-rack-2.0.8-3.3 is installed OR rubygem-rack-2.0.8-3.3 is installed Definition Synopsis SUSE Linux Enterprise Module for Basesystem 15 SP2 is installed AND Package Information dbus-1-1.12.2-8.3 is installed OR dbus-1-devel-1.12.2-8.3 is installed OR dbus-1-x11-1.12.2-8.3 is installed OR libdbus-1-3-1.12.2-8.3 is installed OR libdbus-1-3-32bit-1.12.2-8.3 is installed
BACK