Oval Definition:oval:org.opensuse.security:def:84486
Revision Date:2020-09-18Version:1
Title:Security update for rubygem-rack (Moderate)
Description:

This update for rubygem-rack to version 1.6.13 fixes the following issues:

- CVE-2020-8184: Fixed an issue where percent-encoded cookies could have been used to overwrite existing prefixed cookie names (bsc#1173351). - CVE-2020-8161: Fixed a directory traversal (bsc#1172037). - CVE-2019-16782: Fixed an information leak / session hijack vulnerability (bsc#1159548).
Family:unixClass:patch
Status:Reference(s):1159548
1172037
1173351
CVE-2019-16782
CVE-2020-8161
CVE-2020-8184
SUSE-SU-2020:2678-1
Platform(s):SUSE OpenStack Cloud Crowbar 8
Product(s):
Definition Synopsis
  • SUSE OpenStack Cloud Crowbar 8 is installed
  • AND ruby2.1-rubygem-rack-1.6.13-3.8.1 is installed
    • BACK