Download
| Alert*
oval:org.secpod.oval:def:66736
A flaw was discovered in ruby-kramdown, a fast, pure ruby, Markdown parser and converter, which could result in unintended read access to files or unintended embedded Ruby code execution when the {::options /} extension is used together with the "template" option. The Update introduces a new option ... oval:org.secpod.oval:def:67156 ruby-kramdown: Fast, pure-Ruby Markdown-superset converter - ruby library kramdown could be made to crash, run programs, or leak sensitive information if it opened a specially crafted file. oval:org.secpod.oval:def:3300883 SUSE Security Update: Security update for rubygem-kramdown oval:org.secpod.oval:def:118609 kramdown is yet-another-markdown-parser but fast, pure Ruby, using a strict syntax definition and supporting several common extensions. oval:org.secpod.oval:def:118612 kramdown is yet-another-markdown-parser but fast, pure Ruby, using a strict syntax definition and supporting several common extensions. oval:org.secpod.oval:def:1801936 icinga2: prepare-dirs script allows for symlink attack in the icinga user context oval:org.secpod.oval:def:604984 A flaw was discovered in ruby-kramdown, a fast, pure ruby, Markdown parser and converter, which could result in unintended read access to files or unintended embedded Ruby code execution when the {::options /} extension is used together with the "template" option. The Update introduces a new option ... oval:org.secpod.oval:def:705727 ruby-kramdown: Fast, pure-Ruby Markdown-superset converter - ruby library kramdown could be made to crash, run programs, or leak sensitive information if it opened a specially crafted file. oval:org.secpod.oval:def:705679 ruby-kramdown: Fast, pure-Ruby Markdown-superset converter - ruby library kramdown could be made to crash, run programs, or leak sensitive information if it opened a specially crafted file. |