[Forgot Password]
Login  Register Subscribe

30481

 
 

423868

 
 

256148

 
 

909

 
 

199106

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
OVAL

SUSE-SU-2023:4176-1 -- SLES ruby2.5, libruby2_5-2_5

ID: oval:org.secpod.oval:def:89050999Date: (C)2023-12-11   (M)2024-01-29
Class: PATCHFamily: unix




This update for ruby2.5 fixes the following issues: * CVE-2023-28755: Fixed a ReDoS vulnerability in URI. * CVE-2023-28756: Fixed an expensive regexp in the RFC2822 time parser. * CVE-2021-41817: Fixed a Regular Expression Denial of Service Vulnerability of Date Parsing Methods. * CVE-2021-33621: Fixed a HTTP response splitting vulnerability in CGI gem

Platform:
SUSE Linux Enterprise Desktop 15 SP4
SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise Server 15 SP4
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server 15 SP1
Product:
ruby2.5
libruby2_5-2_5
Reference:
SUSE-SU-2023:4176-1
CVE-2021-33621
CVE-2021-41817
CVE-2023-28755
CVE-2023-28756
CVE    4
CVE-2021-41817
CVE-2021-33621
CVE-2023-28756
CVE-2023-28755
...
CPE    7
cpe:/o:suse:suse_linux_enterprise_server:15:sp1
cpe:/a:ruby2.5:ruby2.5
cpe:/a:libruby2_5-2_5:libruby2_5-2_5
cpe:/o:suse:suse_linux_enterprise_server:15:sp4
...

© SecPod Technologies