Oval Definition:
oval:org.opensuse.security:def:92028
Revision Date
:
2021-12-01
Version
:
1
Title
:
Security update for ruby2.5 (Important)
Description
:
This update for ruby2.5 fixes the following issues:
- CVE-2021-31799: Fixed Command injection vulnerability in RDoc (bsc#1190375). - CVE-2021-31810: Fixed trusting FTP PASV responses vulnerability in Net:FTP (bsc#1188161). - CVE-2021-32066: Fixed StartTLS stripping vulnerability in Net:IMAP (bsc#1188160).
Family
:
unix
Class
:
patch
Status
:
Reference(s)
:
1188160
1188161
1190375
CVE-2021-31799
CVE-2021-31810
CVE-2021-32066
SUSE-SU-2021:3838-1
Platform(s)
:
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
Product(s)
:
Definition Synopsis
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS is installed
AND
Package Information
libruby2_5-2_5-2.5.9-4.20.1 is installed
OR
ruby2.5-2.5.9-4.20.1 is installed
OR
ruby2.5-devel-2.5.9-4.20.1 is installed
OR
ruby2.5-devel-extra-2.5.9-4.20.1 is installed
OR
ruby2.5-stdlib-2.5.9-4.20.1 is installed
BACK