SUSE-SU-2020:0737-1 -- SLES ruby2.5, libruby2_5-2_5ID: oval:org.secpod.oval:def:89044022 | Date: (C)2021-03-05 (M)2024-02-19 |
Class: PATCH | Family: unix |
This update for ruby2.5 toversion 2.5.7 fixes the following issues: ruby 2.5 was updated to version 2.5.7 - CVE-2020-8130: Fixed a command injection in intree copy of rake . - CVE-2019-16255: Fixed a code injection vulnerability of Shell#[] and Shell#test . - CVE-2019-16254: Fixed am HTTP response splitting in WEBrick . - CVE-2019-15845: Fixed a null injection vulnerability of File.fnmatch and File.fnmatch? . - CVE-2019-16201: Fixed a regular expression denial of service of WEBrick Digest access authentication . - CVE-2012-6708: Fixed an XSS in JQuery - CVE-2015-9251: Fixed an XSS in JQuery - Fixed unit tests - Removed some unneeded test files .
Platform: |
SUSE Linux Enterprise Server 15 |
Product: |
ruby2.5 |
libruby2_5-2_5 |