Oval Definition:oval:org.opensuse.security:def:94230
Revision Date:2022-05-03Version:1
Title: (Important)
Description:

This update for ruby2.5 fixes the following issues:

- CVE-2022-28739: Fixed a buffer overrun in String-to-Float conversion (bsc#1198441). - CVE-2021-41817: Fixed a regular expression denial of service in Date Parsing Methods (bsc#1193035). - CVE-2021-32066: Fixed a StartTLS stripping vulnerability in Net:IMAP (bsc#1188160). - CVE-2021-31810: Fixed a trusting FTP PASV responses vulnerability in Net:FTP (bsc#1188161). - CVE-2021-31799: Fixed a command injection vulnerability in RDoc (bsc#1190375).
Family:unixClass:patch
Status:Reference(s):1188160
1188161
1190375
1193035
1198441
CVE-2016-0742
CVE-2016-0746
CVE-2016-0747
CVE-2016-4450
CVE-2017-7529
CVE-2018-16843
CVE-2018-16844
CVE-2018-16845
CVE-2019-20372
CVE-2019-9511
CVE-2019-9513
CVE-2019-9516
CVE-2021-31799
CVE-2021-31810
CVE-2021-32066
CVE-2021-41817
CVE-2022-28739
Platform(s):Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2
SUSE Linux Enterprise High Performance Computing 15 SP2
SUSE Linux Enterprise Module for Server Applications 15 SP2
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
SUSE Linux Enterprise Storage 7
SUSE Manager Proxy 4.1
SUSE Manager Server 4.1
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Server Applications 15 SP2 is installed
  • AND Package Information
  • nginx-1.16.1-1.21 is installed
  • OR nginx-source-1.16.1-1.21 is installed
    • Definition Synopsis
  • Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2 is installed
  • AND Package Information
  • libruby2_5-2_5-2.5.9-150000.4.23.1 is installed
  • OR ruby2.5-2.5.9-150000.4.23.1 is installed
  • OR ruby2.5-stdlib-2.5.9-150000.4.23.1 is installed
    • BACK