SUSE-SU-2023:4176-1 -- SLES ruby2.5, libruby2_5-2_5ID: oval:org.secpod.oval:def:89050999 | Date: (C)2023-12-11 (M)2024-01-29 |
Class: PATCH | Family: unix |
This update for ruby2.5 fixes the following issues: * CVE-2023-28755: Fixed a ReDoS vulnerability in URI. * CVE-2023-28756: Fixed an expensive regexp in the RFC2822 time parser. * CVE-2021-41817: Fixed a Regular Expression Denial of Service Vulnerability of Date Parsing Methods. * CVE-2021-33621: Fixed a HTTP response splitting vulnerability in CGI gem
Platform: |
SUSE Linux Enterprise Desktop 15 SP4 |
SUSE Linux Enterprise Desktop 15 SP5 |
SUSE Linux Enterprise Server 15 SP4 |
SUSE Linux Enterprise Server 15 SP5 |
SUSE Linux Enterprise Server 15 SP2 |
SUSE Linux Enterprise Server 15 SP3 |
SUSE Linux Enterprise Server 15 SP1 |
Product: |
ruby2.5 |
libruby2_5-2_5 |