{"id": "RHSA-2014:1914", "hash": "6b11f4b121dffd68870d81f063c3ce45", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1914) Moderate: ruby200-ruby security update", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby200-ruby users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\n", "published": "2014-11-26T05:00:00", "modified": "2018-06-13T01:28:17", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "href": "https://access.redhat.com/errata/RHSA-2014:1914", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-4975", "CVE-2014-8080", "CVE-2014-8090"], "lastseen": "2019-08-13T18:46:36", "history": [{"bulletin": {"id": "RHSA-2014:1914", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1914) Moderate: ruby200-ruby security update", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby200-ruby users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\n", "published": "2014-11-26T05:00:00", "modified": "2017-03-03T17:39:05", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1914", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-8090", "CVE-2014-4975", "CVE-2014-8080"], "lastseen": "2017-03-06T17:18:47", "history": [], "viewCount": 1, "enchantments": {}, "objectVersion": "1.4", "affectedPackage": [{"arch": "noarch", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el6.noarch.rpm", "OSVersion": "6", "packageName": "ruby200-rubygem-rake", "OS": "RedHat", "packageVersion": "0.9.6-24.el6", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el6.noarch.rpm", "OSVersion": "6", "packageName": "ruby200-rubygem-rdoc", "OS": "RedHat", "packageVersion": "4.0.0-24.el6", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el7.noarch.rpm", "OSVersion": "7", "packageName": "ruby200-ruby-doc", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el7", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el7.noarch.rpm", "OSVersion": "7", "packageName": "ruby200-rubygem-rdoc", "OS": "RedHat", "packageVersion": "4.0.0-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "packageName": "ruby200-ruby", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "packageName": "ruby200-ruby-libs", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el7.x86_64.rpm", "OSVersion": "7", "packageName": "ruby200-rubygem-io-console", "OS": "RedHat", "packageVersion": "0.4.2-24.el7", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el6.noarch.rpm", "OSVersion": "6", "packageName": "ruby200-rubygem-minitest", "OS": "RedHat", "packageVersion": "4.3.2-24.el6", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el7.noarch.rpm", "OSVersion": "7", "packageName": "ruby200-rubygems-devel", "OS": "RedHat", "packageVersion": "2.0.14-24.el7", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el6.noarch.rpm", "OSVersion": "6", "packageName": "ruby200-ruby-doc", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el7.x86_64.rpm", "OSVersion": "7", "packageName": "ruby200-rubygem-bigdecimal", "OS": "RedHat", "packageVersion": "1.2.0-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el6.x86_64.rpm", "OSVersion": "6", "packageName": "ruby200-rubygem-bigdecimal", "OS": "RedHat", "packageVersion": "1.2.0-24.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygems-2.0.14-24.el6.x86_64.rpm", "OSVersion": "6", "packageName": "ruby200-rubygems", "OS": "RedHat", "packageVersion": "2.0.14-24.el6", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el6.noarch.rpm", "OSVersion": "6", "packageName": "ruby200-ruby-irb", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el6.x86_64.rpm", "OSVersion": "6", "packageName": "ruby200-rubygem-psych", "OS": "RedHat", "packageVersion": "2.0.0-24.el6", "operator": "lt"}, {"arch": "src", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.src.rpm", "OSVersion": "6", "packageName": "ruby200-ruby", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el6.x86_64.rpm", "OSVersion": "6", "packageName": "ruby200-rubygem-json", "OS": "RedHat", "packageVersion": "1.7.7-24.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "packageName": "ruby200-ruby-libs", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el7", "operator": "lt"}, {"arch": "src", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.src.rpm", "OSVersion": "7", "packageName": "ruby200-ruby", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el7.x86_64.rpm", "OSVersion": "7", "packageName": "ruby200-rubygem-json", "OS": "RedHat", "packageVersion": "1.7.7-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el7.x86_64.rpm", "OSVersion": "7", "packageName": "ruby200-rubygem-psych", "OS": "RedHat", "packageVersion": "2.0.0-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el6.x86_64.rpm", "OSVersion": "6", "packageName": "ruby200-rubygem-io-console", "OS": "RedHat", "packageVersion": "0.4.2-24.el6", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el7.noarch.rpm", "OSVersion": "7", "packageName": "ruby200-ruby-irb", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "packageName": "ruby200-ruby-devel", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "packageName": "ruby200-ruby-tcltk", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el6", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "packageName": "ruby200-ruby-debuginfo", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "packageName": "ruby200-ruby-debuginfo", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el6", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el6.noarch.rpm", "OSVersion": "6", "packageName": "ruby200-rubygems-devel", "OS": "RedHat", "packageVersion": "2.0.14-24.el6", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el7.noarch.rpm", "OSVersion": "7", "packageName": "ruby200-rubygem-minitest", "OS": "RedHat", "packageVersion": "4.3.2-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "packageName": "ruby200-ruby", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el6", "operator": "lt"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el7.noarch.rpm", "OSVersion": "7", "packageName": "ruby200-rubygem-rake", "OS": "RedHat", "packageVersion": "0.9.6-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygems-2.0.14-24.el7.x86_64.rpm", "OSVersion": "7", "packageName": "ruby200-rubygems", "OS": "RedHat", "packageVersion": "2.0.14-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "packageName": "ruby200-ruby-tcltk", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el7", "operator": "lt"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "packageName": "ruby200-ruby-devel", "OS": "RedHat", "packageVersion": "2.0.0.353-24.el6", "operator": "lt"}]}, "lastseen": "2017-03-06T17:18:47", "differentElements": ["cvss"], "edition": 1}, {"bulletin": {"id": "RHSA-2014:1914", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1914) Moderate: ruby200-ruby security update", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby200-ruby users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\n", "published": "2014-11-26T05:00:00", "modified": "2017-03-03T17:39:05", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1914", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-4975", "CVE-2014-8080", "CVE-2014-8090"], "lastseen": "2017-07-24T12:58:05", "history": [], "viewCount": 1, "enchantments": {}, "objectVersion": "1.4", "affectedPackage": [{"arch": "x86_64", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "src", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.src.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-rake", "packageVersion": "0.9.6-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-doc", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-io-console", "packageVersion": "0.4.2-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-libs", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-tcltk", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-psych", "packageVersion": "2.0.0-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-minitest", "packageVersion": "4.3.2-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-devel", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygems-2.0.14-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygems", "packageVersion": "2.0.14-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-bigdecimal", "packageVersion": "1.2.0-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-json", "packageVersion": "1.7.7-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-irb", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygems-devel", "packageVersion": "2.0.14-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-rdoc", "packageVersion": "4.0.0-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "src", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.src.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-bigdecimal", "packageVersion": "1.2.0-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-tcltk", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygems-devel", "packageVersion": "2.0.14-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-irb", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-doc", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-psych", "packageVersion": "2.0.0-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-devel", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-minitest", "packageVersion": "4.3.2-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-libs", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygems-2.0.14-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygems", "packageVersion": "2.0.14-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-json", "packageVersion": "1.7.7-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-rake", "packageVersion": "0.9.6-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-rdoc", "packageVersion": "4.0.0-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-io-console", "packageVersion": "0.4.2-24.el7", "OS": "RedHat"}]}, "lastseen": "2017-07-24T12:58:05", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "RHSA-2014:1914", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1914) Moderate: ruby200-ruby security update", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby200-ruby users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\n", "published": "2014-11-26T05:00:00", "modified": "2017-07-21T12:52:19", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1914", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-4975", "CVE-2014-8080", "CVE-2014-8090"], "lastseen": "2017-08-02T04:57:38", "history": [], "viewCount": 3, "enchantments": {"score": {"value": 6.1, "vector": "AV:N/AC:L/Au:M/C:N/I:N/A:C/", "modified": "2017-08-02T04:57:38"}}, "objectVersion": "1.4", "affectedPackage": [{"arch": "x86_64", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "src", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.src.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-rake", "packageVersion": "0.9.6-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-doc", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-io-console", "packageVersion": "0.4.2-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-libs", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-tcltk", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-psych", "packageVersion": "2.0.0-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-minitest", "packageVersion": "4.3.2-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-devel", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygems-2.0.14-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygems", "packageVersion": "2.0.14-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-bigdecimal", "packageVersion": "1.2.0-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-json", "packageVersion": "1.7.7-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-irb", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygems-devel", "packageVersion": "2.0.14-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-rdoc", "packageVersion": "4.0.0-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "src", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.src.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-bigdecimal", "packageVersion": "1.2.0-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-tcltk", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygems-devel", "packageVersion": "2.0.14-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-irb", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-doc", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-psych", "packageVersion": "2.0.0-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-devel", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-minitest", "packageVersion": "4.3.2-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-libs", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygems-2.0.14-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygems", "packageVersion": "2.0.14-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-json", "packageVersion": "1.7.7-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-rake", "packageVersion": "0.9.6-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-rdoc", "packageVersion": "4.0.0-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-io-console", "packageVersion": "0.4.2-24.el7", "OS": "RedHat"}]}, "lastseen": "2017-08-02T04:57:38", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "RHSA-2014:1914", "hash": "", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1914) Moderate: ruby200-ruby security update", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby200-ruby users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\n", "published": "2014-11-26T05:00:00", "modified": "2018-03-19T16:32:34", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1914", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-4975", "CVE-2014-8080", "CVE-2014-8090"], "lastseen": "2018-03-28T05:49:22", "history": [], "viewCount": 3, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "affectedPackage": [{"arch": "x86_64", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "src", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.src.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-rake", "packageVersion": "0.9.6-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-doc", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-io-console", "packageVersion": "0.4.2-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-libs", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-tcltk", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-psych", "packageVersion": "2.0.0-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-minitest", "packageVersion": "4.3.2-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-devel", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygems-2.0.14-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygems", "packageVersion": "2.0.14-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-bigdecimal", "packageVersion": "1.2.0-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el6.x86_64.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-json", "packageVersion": "1.7.7-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-ruby-irb", "packageVersion": "2.0.0.353-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygems-devel", "packageVersion": "2.0.14-24.el6", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el6.noarch.rpm", "OSVersion": "6", "operator": "lt", "packageName": "ruby200-rubygem-rdoc", "packageVersion": "4.0.0-24.el6", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "src", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.src.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-bigdecimal", "packageVersion": "1.2.0-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-tcltk", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygems-devel", "packageVersion": "2.0.14-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-irb", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-doc", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-psych", "packageVersion": "2.0.0-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-devel", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-minitest", "packageVersion": "4.3.2-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby-libs", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygems-2.0.14-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygems", "packageVersion": "2.0.14-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-json", "packageVersion": "1.7.7-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-rake", "packageVersion": "0.9.6-24.el7", "OS": "RedHat"}, {"arch": "noarch", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el7.noarch.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-rdoc", "packageVersion": "4.0.0-24.el7", "OS": "RedHat"}, {"arch": "x86_64", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el7.x86_64.rpm", "OSVersion": "7", "operator": "lt", "packageName": "ruby200-rubygem-io-console", "packageVersion": "0.4.2-24.el7", "OS": "RedHat"}]}, "lastseen": "2018-03-28T05:49:22", "differentElements": ["modified"], "edition": 4}, {"bulletin": {"id": "RHSA-2014:1914", "hash": "fab5cb93e561b9d871e7d0e6aaed56a4", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1914) Moderate: ruby200-ruby security update", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby200-ruby users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\n", "published": "2014-11-26T05:00:00", "modified": "2018-06-13T01:28:17", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1914", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-4975", "CVE-2014-8080", "CVE-2014-8090"], "lastseen": "2018-06-12T23:59:20", "history": [], "viewCount": 4, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "src", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-rubygem-rake", "packageVersion": "0.9.6-24.el6", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-ruby-doc", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-rubygem-io-console", "packageVersion": "0.4.2-24.el6", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby-libs", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby-tcltk", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-rubygem-psych", "packageVersion": "2.0.0-24.el6", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-rubygem-minitest", "packageVersion": "4.3.2-24.el6", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby-devel", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-rubygems", "packageVersion": "2.0.14-24.el6", "packageFilename": "ruby200-rubygems-2.0.14-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-rubygem-bigdecimal", "packageVersion": "1.2.0-24.el6", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-rubygem-json", "packageVersion": "1.7.7-24.el6", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-ruby-irb", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-rubygems-devel", "packageVersion": "2.0.14-24.el6", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-rubygem-rdoc", "packageVersion": "4.0.0-24.el6", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "src", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-rubygem-bigdecimal", "packageVersion": "1.2.0-24.el7", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-ruby-tcltk", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-rubygems-devel", "packageVersion": "2.0.14-24.el7", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-ruby-irb", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-ruby-doc", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-rubygem-psych", "packageVersion": "2.0.0-24.el7", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-ruby-devel", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-rubygem-minitest", "packageVersion": "4.3.2-24.el7", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-ruby-libs", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-rubygems", "packageVersion": "2.0.14-24.el7", "packageFilename": "ruby200-rubygems-2.0.14-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-rubygem-json", "packageVersion": "1.7.7-24.el7", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-rubygem-rake", "packageVersion": "0.9.6-24.el7", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-rubygem-rdoc", "packageVersion": "4.0.0-24.el7", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-rubygem-io-console", "packageVersion": "0.4.2-24.el7", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el7.x86_64.rpm", "operator": "lt"}]}, "lastseen": "2018-06-12T23:59:20", "differentElements": ["affectedPackage"], "edition": 5}, {"bulletin": {"id": "RHSA-2014:1914", "hash": "a9e8762bea041dadec922f3e55efa532", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1914) Moderate: ruby200-ruby security update", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby200-ruby users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\n", "published": "2014-11-26T05:00:00", "modified": "2018-06-13T01:28:17", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://access.redhat.com/errata/RHSA-2014:1914", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-4975", "CVE-2014-8080", "CVE-2014-8090"], "lastseen": "2018-12-11T19:42:29", "history": [], "viewCount": 4, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-8090", "CVE-2014-8080", "CVE-2014-4975"]}, {"type": "debian", "idList": ["DEBIAN:DLA-200-1:A49C4", "DEBIAN:DSA-3157-1:362C4", "DEBIAN:DSA-3159-1:E4038", "DEBIAN:DLA-88-1:4DC9E"]}, {"type": "nessus", "idList": ["DEBIAN_DLA-200.NASL", "SL_20141126_RUBY_ON_SL7_X.NASL", "CENTOS_RHSA-2014-1912.NASL", "MANDRIVA_MDVSA-2015-129.NASL", "REDHAT-RHSA-2014-1912.NASL", "ORACLELINUX_ELSA-2014-1912.NASL", "DEBIAN_DSA-3157.NASL", "EULEROS_SA-2018-1374.NASL", "FEDORA_2014-14096.NASL", "SL_20141126_RUBY_ON_SL6_X.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:703157", "OPENVAS:1361412562310122872", "OPENVAS:1361412562310123240", "OPENVAS:1361412562310703157", "OPENVAS:1361412562310842020", "OPENVAS:1361412562310703159", "OPENVAS:1361412562310120426", "OPENVAS:1361412562310120421", "OPENVAS:703159", "OPENVAS:1361412562310123239"]}, {"type": "oraclelinux", "idList": ["ELSA-2014-1913", "ELSA-2014-1912", "ELSA-2014-1911"]}, {"type": "redhat", "idList": ["RHSA-2014:1912", "RHSA-2014:1913", "RHSA-2014:1911"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:14099", "SECURITYVULNS:DOC:31390", "SECURITYVULNS:DOC:32522", "SECURITYVULNS:VULN:14702"]}, {"type": "centos", "idList": ["CESA-2014:1912", "CESA-2014:1911"]}, {"type": "amazon", "idList": ["ALAS-2014-449", "ALAS-2014-448", "ALAS-2014-447", "ALAS-2014-441", "ALAS-2014-439"]}, {"type": "ubuntu", "idList": ["USN-2397-1", "USN-2412-1"]}, {"type": "archlinux", "idList": ["ASA-201411-16"]}, {"type": "gentoo", "idList": ["GLSA-201412-27"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2017:1128-1", "SUSE-SU-2017:1067-1"]}], "modified": "2018-12-11T19:42:29"}}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}]}, "lastseen": "2018-12-11T19:42:29", "differentElements": ["cvss"], "edition": 6}, {"bulletin": {"id": "RHSA-2014:1914", "hash": "d905a273b30427f412672747d258dd1b", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2014:1914) Moderate: ruby200-ruby security update", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby200-ruby users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\n", "published": "2014-11-26T05:00:00", "modified": "2018-06-13T01:28:17", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}, "href": "https://access.redhat.com/errata/RHSA-2014:1914", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2014-4975", "CVE-2014-8080", "CVE-2014-8090"], "lastseen": "2019-05-29T14:35:33", "history": [], "viewCount": 4, "enchantments": {"score": {"value": 6.6, "vector": "NONE", "modified": "2019-05-29T14:35:33"}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-8090", "CVE-2014-4975", "CVE-2014-8080"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310703157", "OPENVAS:1361412562310123240", "OPENVAS:1361412562310122872", "OPENVAS:703157", "OPENVAS:1361412562310120421", "OPENVAS:1361412562310123239", "OPENVAS:703159", "OPENVAS:1361412562310120426", "OPENVAS:1361412562310703159", "OPENVAS:1361412562310842020"]}, {"type": "redhat", "idList": ["RHSA-2014:1913", "RHSA-2014:1912", "RHSA-2014:1911"]}, {"type": "centos", "idList": ["CESA-2014:1912", "CESA-2014:1911"]}, {"type": "nessus", "idList": ["EULEROS_SA-2018-1374.NASL", "DEBIAN_DLA-200.NASL", "SL_20141126_RUBY_ON_SL7_X.NASL", "CENTOS_RHSA-2014-1912.NASL", "ORACLELINUX_ELSA-2014-1912.NASL", "MANDRIVA_MDVSA-2015-129.NASL", "DEBIAN_DSA-3157.NASL", "REDHAT-RHSA-2014-1912.NASL", "CENTOS_RHSA-2014-1911.NASL", "OPENSUSE-2015-1.NASL"]}, {"type": "debian", "idList": ["DEBIAN:DSA-3157-1:362C4", "DEBIAN:DLA-200-1:A49C4", "DEBIAN:DSA-3159-1:E4038", "DEBIAN:DLA-88-1:4DC9E"]}, {"type": "oraclelinux", "idList": ["ELSA-2014-1912", "ELSA-2014-1913", "ELSA-2014-1911"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:14099", "SECURITYVULNS:DOC:31390", "SECURITYVULNS:DOC:32522", "SECURITYVULNS:VULN:14702"]}, {"type": "amazon", "idList": ["ALAS-2014-448", "ALAS-2014-449", "ALAS-2014-447", "ALAS-2014-439", "ALAS-2014-441"]}, {"type": "ubuntu", "idList": ["USN-2397-1", "USN-2412-1"]}, {"type": "archlinux", "idList": ["ASA-201411-16"]}, {"type": "gentoo", "idList": ["GLSA-201412-27"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2017:1128-1", "SUSE-SU-2017:1067-1"]}], "modified": "2019-05-29T14:35:33"}}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}]}, "lastseen": "2019-05-29T14:35:33", "differentElements": ["affectedPackage"], "edition": 7}], "viewCount": 4, "enchantments": {"score": {"value": 6.6, "vector": "NONE", "modified": "2019-08-13T18:46:36", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2014-4975", "CVE-2014-8090", "CVE-2014-8080"]}, {"type": "nessus", "idList": ["MANDRIVA_MDVSA-2015-129.NASL", "DEBIAN_DSA-3157.NASL", "SL_20141126_RUBY_ON_SL7_X.NASL", "REDHAT-RHSA-2014-1912.NASL", "MANDRIVA_MDVSA-2014-225.NASL", "CENTOS_RHSA-2014-1912.NASL", "DEBIAN_DLA-200.NASL", "EULEROS_SA-2018-1374.NASL", "OPENSUSE-2015-1.NASL", "ORACLELINUX_ELSA-2014-1912.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310120426", "OPENVAS:703157", "OPENVAS:1361412562310703157", "OPENVAS:1361412562310703159", "OPENVAS:1361412562310120421", "OPENVAS:703159", "OPENVAS:1361412562310123240", "OPENVAS:1361412562310122872", "OPENVAS:1361412562310123239", "OPENVAS:1361412562311220181374"]}, {"type": "debian", "idList": ["DEBIAN:DSA-3159-1:E4038", "DEBIAN:DLA-200-1:A49C4", "DEBIAN:DSA-3157-1:362C4", "DEBIAN:DLA-88-1:4DC9E"]}, {"type": "redhat", "idList": ["RHSA-2014:1911", "RHSA-2014:1912", "RHSA-2014:1913"]}, {"type": "centos", "idList": ["CESA-2014:1912", "CESA-2014:1911"]}, {"type": "oraclelinux", "idList": ["ELSA-2014-1912", "ELSA-2014-1911", "ELSA-2014-1913"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:32522", "SECURITYVULNS:VULN:14702", "SECURITYVULNS:DOC:31390", "SECURITYVULNS:VULN:14099"]}, {"type": "amazon", "idList": ["ALAS-2014-441", "ALAS-2014-448", "ALAS-2014-449", "ALAS-2014-447", "ALAS-2014-439"]}, {"type": "ubuntu", "idList": ["USN-2412-1", "USN-2397-1"]}, {"type": "archlinux", "idList": ["ASA-201411-16"]}, {"type": "gentoo", "idList": ["GLSA-201412-27"]}, {"type": "suse", "idList": ["OPENSUSE-SU-2017:1128-1", "SUSE-SU-2017:1067-1"]}], "modified": "2019-08-13T18:46:36", "rev": 2}, "vulnersScore": 6.6}, "objectVersion": "1.4", "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby-libs", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-rubygem-json", "packageVersion": "1.7.7-24.el6", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-ruby-irb", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "src", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-ruby-doc", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby-tcltk", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby-devel", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-rubygems-devel", "packageVersion": "2.0.14-24.el7", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-rubygem-io-console", "packageVersion": "0.4.2-24.el7", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-ruby-libs", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-libs-2.0.0.353-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-rubygem-io-console", "packageVersion": "0.4.2-24.el6", "packageFilename": "ruby200-rubygem-io-console-0.4.2-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-rubygem-rdoc", "packageVersion": "4.0.0-24.el6", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "src", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-2.0.0.353-24.el7.src.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-ruby-debuginfo", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-debuginfo-2.0.0.353-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-rubygem-psych", "packageVersion": "2.0.0-24.el7", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-ruby-irb", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-irb-2.0.0.353-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-rubygem-json", "packageVersion": "1.7.7-24.el7", "packageFilename": "ruby200-rubygem-json-1.7.7-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-rubygem-bigdecimal", "packageVersion": "1.2.0-24.el7", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-rubygems-devel", "packageVersion": "2.0.14-24.el6", "packageFilename": "ruby200-rubygems-devel-2.0.14-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-rubygem-rake", "packageVersion": "0.9.6-24.el6", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-rubygem-bigdecimal", "packageVersion": "1.2.0-24.el6", "packageFilename": "ruby200-rubygem-bigdecimal-1.2.0-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-ruby-devel", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-devel-2.0.0.353-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-ruby", "packageVersion": "2.0.0.353-24.el6", "packageFilename": "ruby200-ruby-2.0.0.353-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-rubygem-minitest", "packageVersion": "4.3.2-24.el7", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-ruby-tcltk", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-tcltk-2.0.0.353-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-ruby-doc", "packageVersion": "2.0.0.353-24.el7", "packageFilename": "ruby200-ruby-doc-2.0.0.353-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "x86_64", "packageName": "ruby200-rubygems", "packageVersion": "2.0.14-24.el7", "packageFilename": "ruby200-rubygems-2.0.14-24.el7.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-rubygem-psych", "packageVersion": "2.0.0-24.el6", "packageFilename": "ruby200-rubygem-psych-2.0.0-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-rubygem-rake", "packageVersion": "0.9.6-24.el7", "packageFilename": "ruby200-rubygem-rake-0.9.6-24.el7.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "noarch", "packageName": "ruby200-rubygem-minitest", "packageVersion": "4.3.2-24.el6", "packageFilename": "ruby200-rubygem-minitest-4.3.2-24.el6.noarch.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageName": "ruby200-rubygems", "packageVersion": "2.0.14-24.el6", "packageFilename": "ruby200-rubygems-2.0.14-24.el6.x86_64.rpm", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "arch": "noarch", "packageName": "ruby200-rubygem-rdoc", "packageVersion": "4.0.0-24.el7", "packageFilename": "ruby200-rubygem-rdoc-4.0.0-24.el7.noarch.rpm", "operator": "lt"}], "_object_type": "robots.models.redhat.RedHatBulletin", "_object_types": ["robots.models.redhat.RedHatBulletin", "robots.models.base.Bulletin"]}

{"cve": [{"lastseen": "2019-05-29T18:13:49", "bulletinFamily": "NVD", "description": "The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nested entity references, aka an XML Entity Expansion (XEE) attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1821 and CVE-2014-8080.\n<a href=\"http://cwe.mitre.org/data/definitions/611.html\" target=\"_blank\">CWE-611: Improper Restriction of XML External Entity Reference ('XXE')</a>", "modified": "2017-01-03T02:59:00", "id": "CVE-2014-8090", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8090", "published": "2014-11-21T15:59:00", "title": "CVE-2014-8090", "type": "cve", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:13:49", "bulletinFamily": "NVD", "description": "The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.\n<a href=\"http://cwe.mitre.org/data/definitions/611.html\" target=\"_blank\">CWE-611: Improper Restriction of XML External Entity Reference ('XXE')</a>", "modified": "2018-10-30T16:27:00", "id": "CVE-2014-8080", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-8080", "published": "2014-11-03T16:55:00", "title": "CVE-2014-8080", "type": "cve", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:13:47", "bulletinFamily": "NVD", "description": "Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a denial of service (segmentation fault) via vectors that trigger a stack-based buffer overflow.", "modified": "2017-08-29T01:35:00", "id": "CVE-2014-4975", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-4975", "published": "2014-11-15T20:59:00", "title": "CVE-2014-4975", "type": "cve", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}], "nessus": [{"lastseen": "2020-03-17T22:58:24", "bulletinFamily": "scanner", "description": "CVE-2014-4975\n\nThe encodes() function in pack.c had an off-by-one error that could\nlead to a stack-based buffer overflow. This could allow remote\nattackers to cause a denial of service (crash) or arbitrary code\nexecution.\n\nCVE-2014-8080, CVE-2014-8090\n\nThe REXML parser could be coerced into allocating large string objects\nthat could consume all available memory on the system. This could\nallow remote attackers to cause a denial of service (crash).\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.", "modified": "2015-04-16T00:00:00", "id": "DEBIAN_DLA-200.NASL", "href": "https://www.tenable.com/plugins/nessus/82805", "published": "2015-04-16T00:00:00", "title": "Debian DLA-200-1 : ruby1.9.1 security update", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-200-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82805);\n script_version(\"1.9\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\", \"CVE-2014-8090\");\n script_bugtraq_id(68474, 70935, 71230);\n\n script_name(english:\"Debian DLA-200-1 : ruby1.9.1 security update\");\n script_summary(english:\"Checks dpkg output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"CVE-2014-4975\n\nThe encodes() function in pack.c had an off-by-one error that could\nlead to a stack-based buffer overflow. This could allow remote\nattackers to cause a denial of service (crash) or arbitrary code\nexecution.\n\nCVE-2014-8080, CVE-2014-8090\n\nThe REXML parser could be coerced into allocating large string objects\nthat could consume all available memory on the system. This could\nallow remote attackers to cause a denial of service (crash).\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2015/04/msg00013.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/squeeze-lts/ruby1.9.1\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Upgrade the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libruby1.9.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libruby1.9.1-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libtcltk-ruby1.9.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:ri1.9.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:ruby1.9.1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:ruby1.9.1-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:ruby1.9.1-elisp\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:ruby1.9.1-examples\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:ruby1.9.1-full\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:6.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/04/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/04/16\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2020 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"6.0\", prefix:\"libruby1.9.1\", reference:\"1.9.2.0-2+deb6u3\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"libruby1.9.1-dbg\", reference:\"1.9.2.0-2+deb6u3\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"libtcltk-ruby1.9.1\", reference:\"1.9.2.0-2+deb6u3\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"ri1.9.1\", reference:\"1.9.2.0-2+deb6u3\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"ruby1.9.1\", reference:\"1.9.2.0-2+deb6u3\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"ruby1.9.1-dev\", reference:\"1.9.2.0-2+deb6u3\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"ruby1.9.1-elisp\", reference:\"1.9.2.0-2+deb6u3\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"ruby1.9.1-examples\", reference:\"1.9.2.0-2+deb6u3\")) flag++;\nif (deb_check(release:\"6.0\", prefix:\"ruby1.9.1-full\", reference:\"1.9.2.0-2+deb6u3\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-03-18T02:47:18", "bulletinFamily": "scanner", "description": "Multiple denial of service flaws were found in the way the Ruby REXML\nXML parser performed expansion of parameter entities. A specially\ncrafted XML document could cause REXML to use an excessive amount of\nCPU and memory. (CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the\nRuby Array pack() method. When performing base64 encoding, a single\nbyte could be written past the end of the buffer, possibly causing\nRuby to crash. (CVE-2014-4975)\n\nAll running instances of Ruby need to be restarted for this update to\ntake effect.", "modified": "2014-12-02T00:00:00", "id": "SL_20141126_RUBY_ON_SL7_X.NASL", "href": "https://www.tenable.com/plugins/nessus/79658", "published": "2014-12-02T00:00:00", "title": "Scientific Linux Security Update : ruby on SL7.x x86_64 (20141126)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79658);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/02/25\");\n\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\", \"CVE-2014-8090\");\n\n script_name(english:\"Scientific Linux Security Update : ruby on SL7.x x86_64 (20141126)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple denial of service flaws were found in the way the Ruby REXML\nXML parser performed expansion of parameter entities. A specially\ncrafted XML document could cause REXML to use an excessive amount of\nCPU and memory. (CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the\nRuby Array pack() method. When performing base64 encoding, a single\nbyte could be written past the end of the buffer, possibly causing\nRuby to crash. (CVE-2014-4975)\n\nAll running instances of Ruby need to be restarted for this update to\ntake effect.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1412&L=scientific-linux-errata&T=0&P=79\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e191d8f6\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-irb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-tcltk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:rubygem-bigdecimal\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:rubygem-io-console\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:rubygem-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:rubygem-minitest\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:rubygem-psych\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:rubygem-rake\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:rubygem-rdoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:rubygems\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:rubygems-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/11/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/11/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/02\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nos_ver = pregmatch(pattern: \"Scientific Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Scientific Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Scientific Linux 7.x\", \"Scientific Linux \" + os_ver);\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ruby-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ruby-debuginfo-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ruby-devel-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", reference:\"ruby-doc-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", reference:\"ruby-irb-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ruby-libs-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ruby-tcltk-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"rubygem-bigdecimal-1.2.0-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"rubygem-io-console-0.4.2-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"rubygem-json-1.7.7-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", reference:\"rubygem-minitest-4.3.2-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"rubygem-psych-2.0.0-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", reference:\"rubygem-rake-0.9.6-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", reference:\"rubygem-rdoc-4.0.0-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", reference:\"rubygems-2.0.14-22.el7_0\")) flag++;\nif (rpm_check(release:\"SL7\", reference:\"rubygems-devel-2.0.14-22.el7_0\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ruby / ruby-debuginfo / ruby-devel / ruby-doc / ruby-irb / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-08-01T03:23:12", "bulletinFamily": "scanner", "description": "Updated ruby packages fix security vulnerabilities :\n\nWill Wood discovered that Ruby incorrectly handled the encodes()\nfunction. An attacker could possibly use this issue to cause Ruby to\ncrash, resulting in a denial of service, or possibly execute arbitrary\ncode. The default compiler options for affected releases should reduce\nthe vulnerability to a denial of service (CVE-2014-4975).\n\nDue to an incomplete fix for CVE-2014-8080, 100% CPU utilization can\noccur as a result of recursive expansion with an empty String. When\nreading text nodes from an XML document, the REXML parser in Ruby can\nbe coerced into allocating extremely large string objects which can\nconsume all of the memory on a machine, causing a denial of service\n(CVE-2014-8090).\n\nAdditionally ruby has been upgraded to patch level 374.", "modified": "2020-08-02T00:00:00", "id": "MANDRIVA_MDVSA-2014-225.NASL", "href": "https://www.tenable.com/plugins/nessus/79571", "published": "2014-11-26T00:00:00", "title": "Mandriva Linux Security Advisory : ruby (MDVSA-2014:225)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2014:225. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79571);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2019/08/02 13:32:56\");\n\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8090\");\n script_bugtraq_id(68474, 71230);\n script_xref(name:\"MDVSA\", value:\"2014:225\");\n\n script_name(english:\"Mandriva Linux Security Advisory : ruby (MDVSA-2014:225)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated ruby packages fix security vulnerabilities :\n\nWill Wood discovered that Ruby incorrectly handled the encodes()\nfunction. An attacker could possibly use this issue to cause Ruby to\ncrash, resulting in a denial of service, or possibly execute arbitrary\ncode. The default compiler options for affected releases should reduce\nthe vulnerability to a denial of service (CVE-2014-4975).\n\nDue to an incomplete fix for CVE-2014-8080, 100% CPU utilization can\noccur as a result of recursive expansion with an empty String. When\nreading text nodes from an XML document, the REXML parser in Ruby can\nbe coerced into allocating extremely large string objects which can\nconsume all of the memory on a machine, causing a denial of service\n(CVE-2014-8090).\n\nAdditionally ruby has been upgraded to patch level 374.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://advisories.mageia.org/MGASA-2014-0472.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ruby\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ruby-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ruby-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ruby-tk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:business_server:1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/11/25\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/26\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"ruby-1.8.7.p374-1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"ruby-devel-1.8.7.p374-1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", reference:\"ruby-doc-1.8.7.p374-1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"ruby-tk-1.8.7.p374-1.mbs1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-08-01T04:23:35", "bulletinFamily": "scanner", "description": "Updated ruby packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nRuby is an extensible, interpreted, object-oriented, scripting\nlanguage. It has features to process text files and to perform system\nmanagement tasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML\nXML parser performed expansion of parameter entities. A specially\ncrafted XML document could cause REXML to use an excessive amount of\nCPU and memory. (CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the\nRuby Array pack() method. When performing base64 encoding, a single\nbyte could be written past the end of the buffer, possibly causing\nRuby to crash. (CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.", "modified": "2020-08-02T00:00:00", "id": "REDHAT-RHSA-2014-1912.NASL", "href": "https://www.tenable.com/plugins/nessus/79596", "published": "2014-11-27T00:00:00", "title": "RHEL 7 : ruby (RHSA-2014:1912)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2014:1912. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79596);\n script_version(\"1.17\");\n script_cvs_date(\"Date: 2019/10/24 15:35:39\");\n\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\", \"CVE-2014-8090\");\n script_bugtraq_id(68474, 70935, 71230);\n script_xref(name:\"RHSA\", value:\"2014:1912\");\n\n script_name(english:\"RHEL 7 : ruby (RHSA-2014:1912)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated ruby packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nRuby is an extensible, interpreted, object-oriented, scripting\nlanguage. It has features to process text files and to perform system\nmanagement tasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML\nXML parser performed expansion of parameter entities. A specially\ncrafted XML document could cause REXML to use an excessive amount of\nCPU and memory. (CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the\nRuby Array pack() method. When performing base64 encoding, a single\nbyte could be written past the end of the buffer, possibly causing\nRuby to crash. (CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2014:1912\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2014-8080\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2014-4975\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2014-8090\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ruby\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ruby-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ruby-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ruby-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ruby-irb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ruby-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ruby-tcltk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rubygem-bigdecimal\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rubygem-io-console\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rubygem-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rubygem-minitest\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rubygem-psych\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rubygem-rake\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rubygem-rdoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rubygems\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:rubygems-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.7\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/11/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/11/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/27\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 7.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2014:1912\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"ruby-2.0.0.353-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"ruby-2.0.0.353-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"ruby-debuginfo-2.0.0.353-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"ruby-devel-2.0.0.353-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"ruby-devel-2.0.0.353-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"ruby-doc-2.0.0.353-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"ruby-irb-2.0.0.353-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"ruby-libs-2.0.0.353-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"ruby-tcltk-2.0.0.353-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"ruby-tcltk-2.0.0.353-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"rubygem-bigdecimal-1.2.0-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"rubygem-bigdecimal-1.2.0-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"rubygem-io-console-0.4.2-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"rubygem-io-console-0.4.2-22.el7_0\")) flag++;\n\n if (rpm_exists(rpm:\"rubygem-json-1.7\", release:\"RHEL7\") && rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"rubygem-json-1.7.7-22.el7_0\")) flag++;\n\n if (rpm_exists(rpm:\"rubygem-json-1.7\", release:\"RHEL7\") && rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"rubygem-json-1.7.7-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"rubygem-minitest-4.3.2-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"rubygem-psych-2.0.0-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"rubygem-psych-2.0.0-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"rubygem-rake-0.9.6-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"rubygem-rdoc-4.0.0-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"rubygems-2.0.14-22.el7_0\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"rubygems-devel-2.0.14-22.el7_0\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ruby / ruby-debuginfo / ruby-devel / ruby-doc / ruby-irb / etc\");\n }\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-08-01T01:07:13", "bulletinFamily": "scanner", "description": "Updated ruby packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nRuby is an extensible, interpreted, object-oriented, scripting\nlanguage. It has features to process text files and to perform system\nmanagement tasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML\nXML parser performed expansion of parameter entities. A specially\ncrafted XML document could cause REXML to use an excessive amount of\nCPU and memory. (CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the\nRuby Array pack() method. When performing base64 encoding, a single\nbyte could be written past the end of the buffer, possibly causing\nRuby to crash. (CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.", "modified": "2020-08-02T00:00:00", "id": "CENTOS_RHSA-2014-1912.NASL", "href": "https://www.tenable.com/plugins/nessus/79643", "published": "2014-12-02T00:00:00", "title": "CentOS 7 : ruby (CESA-2014:1912)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2014:1912 and \n# CentOS Errata and Security Advisory 2014:1912 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79643);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2020/01/06\");\n\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\", \"CVE-2014-8090\");\n script_bugtraq_id(68474, 70935, 71230);\n script_xref(name:\"RHSA\", value:\"2014:1912\");\n\n script_name(english:\"CentOS 7 : ruby (CESA-2014:1912)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated ruby packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nRuby is an extensible, interpreted, object-oriented, scripting\nlanguage. It has features to process text files and to perform system\nmanagement tasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML\nXML parser performed expansion of parameter entities. A specially\ncrafted XML document could cause REXML to use an excessive amount of\nCPU and memory. (CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the\nRuby Array pack() method. When performing base64 encoding, a single\nbyte could be written past the end of the buffer, possibly causing\nRuby to crash. (CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2014-December/020792.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?13f8376b\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected ruby packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2014-4975\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ruby\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ruby-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ruby-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ruby-irb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ruby-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ruby-tcltk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:rubygem-bigdecimal\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:rubygem-io-console\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:rubygem-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:rubygem-minitest\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:rubygem-psych\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:rubygem-rake\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:rubygem-rdoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:rubygems\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:rubygems-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:7\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/11/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/02\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/CentOS/release\");\nif (isnull(release) || \"CentOS\" >!< release) audit(AUDIT_OS_NOT, \"CentOS\");\nos_ver = pregmatch(pattern: \"CentOS(?: Linux)? release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"CentOS\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"CentOS 7.x\", \"CentOS \" + os_ver);\n\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ruby-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ruby-devel-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ruby-doc-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ruby-irb-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ruby-libs-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ruby-tcltk-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"rubygem-bigdecimal-1.2.0-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"rubygem-io-console-0.4.2-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"rubygem-json-1.7.7-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"rubygem-minitest-4.3.2-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"rubygem-psych-2.0.0-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"rubygem-rake-0.9.6-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"rubygem-rdoc-4.0.0-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"rubygems-2.0.14-22.el7_0\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"rubygems-devel-2.0.14-22.el7_0\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ruby / ruby-devel / ruby-doc / ruby-irb / ruby-libs / ruby-tcltk / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-08-01T03:23:16", "bulletinFamily": "scanner", "description": "Updated ruby packages fix security vulnerabilities :\n\nDue to unrestricted entity expansion, when reading text nodes from an\nXML document, the REXML parser in Ruby can be coerced into allocating\nextremely large string objects which can consume all of the memory on\na machine, causing a denial of service (CVE-2014-8080).\n\nWill Wood discovered that Ruby incorrectly handled the encodes()\nfunction. An attacker could possibly use this issue to cause Ruby to\ncrash, resulting in a denial of service, or possibly execute arbitrary\ncode. The default compiler options for affected releases should reduce\nthe vulnerability to a denial of service (CVE-2014-4975).\n\nDue to an incomplete fix for CVE-2014-8080, 100% CPU utilization can\noccur as a result of recursive expansion with an empty String. When\nreading text nodes from an XML document, the REXML parser in Ruby can\nbe coerced into allocating extremely large string objects which can\nconsume all of the memory on a machine, causing a denial of service\n(CVE-2014-8090).", "modified": "2020-08-02T00:00:00", "id": "MANDRIVA_MDVSA-2015-129.NASL", "href": "https://www.tenable.com/plugins/nessus/82382", "published": "2015-03-30T00:00:00", "title": "Mandriva Linux Security Advisory : ruby (MDVSA-2015:129)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2015:129. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(82382);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2019/08/02 13:32:56\");\n\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\", \"CVE-2014-8090\");\n script_xref(name:\"MDVSA\", value:\"2015:129\");\n\n script_name(english:\"Mandriva Linux Security Advisory : ruby (MDVSA-2015:129)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated ruby packages fix security vulnerabilities :\n\nDue to unrestricted entity expansion, when reading text nodes from an\nXML document, the REXML parser in Ruby can be coerced into allocating\nextremely large string objects which can consume all of the memory on\na machine, causing a denial of service (CVE-2014-8080).\n\nWill Wood discovered that Ruby incorrectly handled the encodes()\nfunction. An attacker could possibly use this issue to cause Ruby to\ncrash, resulting in a denial of service, or possibly execute arbitrary\ncode. The default compiler options for affected releases should reduce\nthe vulnerability to a denial of service (CVE-2014-4975).\n\nDue to an incomplete fix for CVE-2014-8080, 100% CPU utilization can\noccur as a result of recursive expansion with an empty String. When\nreading text nodes from an XML document, the REXML parser in Ruby can\nbe coerced into allocating extremely large string objects which can\nconsume all of the memory on a machine, causing a denial of service\n(CVE-2014-8090).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://advisories.mageia.org/MGASA-2014-0443.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://advisories.mageia.org/MGASA-2014-0472.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64ruby2.0\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ruby\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ruby-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ruby-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ruby-irb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:ruby-tk\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:business_server:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/03/29\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/03/30\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK-MBS2\", cpu:\"x86_64\", reference:\"lib64ruby2.0-2.0.0.p598-1.mbs2\")) flag++;\nif (rpm_check(release:\"MDK-MBS2\", cpu:\"x86_64\", reference:\"ruby-2.0.0.p598-1.mbs2\")) flag++;\nif (rpm_check(release:\"MDK-MBS2\", cpu:\"x86_64\", reference:\"ruby-devel-2.0.0.p598-1.mbs2\")) flag++;\nif (rpm_check(release:\"MDK-MBS2\", reference:\"ruby-doc-2.0.0.p598-1.mbs2\")) flag++;\nif (rpm_check(release:\"MDK-MBS2\", reference:\"ruby-irb-2.0.0.p598-1.mbs2\")) flag++;\nif (rpm_check(release:\"MDK-MBS2\", cpu:\"x86_64\", reference:\"ruby-tk-2.0.0.p598-1.mbs2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-08-01T04:11:34", "bulletinFamily": "scanner", "description": "From Red Hat Security Advisory 2014:1912 :\n\nUpdated ruby packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nRuby is an extensible, interpreted, object-oriented, scripting\nlanguage. It has features to process text files and to perform system\nmanagement tasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML\nXML parser performed expansion of parameter entities. A specially\ncrafted XML document could cause REXML to use an excessive amount of\nCPU and memory. (CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the\nRuby Array pack() method. When performing base64 encoding, a single\nbyte could be written past the end of the buffer, possibly causing\nRuby to crash. (CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.", "modified": "2020-08-02T00:00:00", "id": "ORACLELINUX_ELSA-2014-1912.NASL", "href": "https://www.tenable.com/plugins/nessus/79594", "published": "2014-11-27T00:00:00", "title": "Oracle Linux 7 : ruby (ELSA-2014-1912)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2014:1912 and \n# Oracle Linux Security Advisory ELSA-2014-1912 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79594);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2019/09/30 10:58:19\");\n\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\", \"CVE-2014-8090\");\n script_bugtraq_id(68474, 70935, 71230);\n script_xref(name:\"RHSA\", value:\"2014:1912\");\n\n script_name(english:\"Oracle Linux 7 : ruby (ELSA-2014-1912)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2014:1912 :\n\nUpdated ruby packages that fix three security issues are now available\nfor Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nRuby is an extensible, interpreted, object-oriented, scripting\nlanguage. It has features to process text files and to perform system\nmanagement tasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML\nXML parser performed expansion of parameter entities. A specially\ncrafted XML document could cause REXML to use an excessive amount of\nCPU and memory. (CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the\nRuby Array pack() method. When performing base64 encoding, a single\nbyte could be written past the end of the buffer, possibly causing\nRuby to crash. (CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2014-November/004674.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected ruby packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ruby\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ruby-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ruby-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ruby-irb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ruby-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ruby-tcltk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:rubygem-bigdecimal\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:rubygem-io-console\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:rubygem-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:rubygem-minitest\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:rubygem-psych\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:rubygem-rake\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:rubygem-rdoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:rubygems\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:rubygems-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:7\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/11/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/11/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/27\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 7\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\nif (\"x86_64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ruby-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ruby-devel-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ruby-doc-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ruby-irb-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ruby-libs-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ruby-tcltk-2.0.0.353-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"rubygem-bigdecimal-1.2.0-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"rubygem-io-console-0.4.2-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"rubygem-json-1.7.7-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"rubygem-minitest-4.3.2-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"rubygem-psych-2.0.0-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"rubygem-rake-0.9.6-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"rubygem-rdoc-4.0.0-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"rubygems-2.0.14-22.el7_0\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"rubygems-devel-2.0.14-22.el7_0\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ruby / ruby-devel / ruby-doc / ruby-irb / ruby-libs / ruby-tcltk / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-03-17T23:00:41", "bulletinFamily": "scanner", "description": "Multiple vulnerabilities were discovered in the interpreter for the\nRuby language :\n\n - CVE-2014-4975\n The encodes() function in pack.c had an off-by-one error\n that could lead to a stack-based buffer overflow. This\n could allow remote attackers to cause a denial of\n service (crash) or arbitrary code execution.\n\n - CVE-2014-8080, CVE-2014-8090\n The REXML parser could be coerced into allocating large\n string objects that could consume all available memory\n on the system. This could allow remote attackers to\n cause a denial of service (crash).", "modified": "2015-02-10T00:00:00", "id": "DEBIAN_DSA-3157.NASL", "href": "https://www.tenable.com/plugins/nessus/81250", "published": "2015-02-10T00:00:00", "title": "Debian DSA-3157-1 : ruby1.9.1 - security update", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-3157. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(81250);\n script_version(\"1.10\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\", \"CVE-2014-8090\");\n script_bugtraq_id(68474, 70935, 71230);\n script_xref(name:\"DSA\", value:\"3157\");\n\n script_name(english:\"Debian DSA-3157-1 : ruby1.9.1 - security update\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities were discovered in the interpreter for the\nRuby language :\n\n - CVE-2014-4975\n The encodes() function in pack.c had an off-by-one error\n that could lead to a stack-based buffer overflow. This\n could allow remote attackers to cause a denial of\n service (crash) or arbitrary code execution.\n\n - CVE-2014-8080, CVE-2014-8090\n The REXML parser could be coerced into allocating large\n string objects that could consume all available memory\n on the system. This could allow remote attackers to\n cause a denial of service (crash).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2014-4975\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2014-8080\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2014-8090\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/ruby1.9.1\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.debian.org/security/2015/dsa-3157\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the ruby1.9.1 packages.\n\nFor the stable distribution (wheezy), these problems have been fixed\nin version 1.9.3.194-8.1+deb7u3.\n\nFor the upcoming stable distribution (jessie), these problems have\nbeen fixed in version 2.1.5-1 of the ruby2.1 source package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:ruby1.9.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/02/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/02/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"libruby1.9.1\", reference:\"1.9.3.194-8.1+deb7u3\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libruby1.9.1-dbg\", reference:\"1.9.3.194-8.1+deb7u3\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"libtcltk-ruby1.9.1\", reference:\"1.9.3.194-8.1+deb7u3\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"ri1.9.1\", reference:\"1.9.3.194-8.1+deb7u3\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"ruby1.9.1\", reference:\"1.9.3.194-8.1+deb7u3\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"ruby1.9.1-dev\", reference:\"1.9.3.194-8.1+deb7u3\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"ruby1.9.1-examples\", reference:\"1.9.3.194-8.1+deb7u3\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"ruby1.9.1-full\", reference:\"1.9.3.194-8.1+deb7u3\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"ruby1.9.3\", reference:\"1.9.3.194-8.1+deb7u3\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-07-22T00:43:04", "bulletinFamily": "scanner", "description": "According to the versions of the ruby packages installed, the EulerOS\nVirtualization installation on the remote host is affected by the\nfollowing vulnerabilities :\n\n - The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x\n before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote\n attackers to cause a denial of service (memory\n consumption) via a crafted XML document, aka an XML\n Entity Expansion (XEE) attack.i1/4^CVE-2014-8080i1/4%0\n\n - The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel\n 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x\n before 2.1.5 allows remote attackers to cause a denial\n of service (CPU and memory consumption) a crafted XML\n document containing an empty string in an entity that\n is used in a large number of nested entity references,\n aka an XML Entity Expansion (XEE) attack. NOTE: this\n vulnerability exists because of an incomplete fix for\n CVE-2013-1821 and CVE-2014-8080.i1/4^CVE-2014-8090i1/4%0\n\n - Off-by-one error in the encodes function in pack.c in\n Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when\n using certain format string specifiers, allows\n context-dependent attackers to cause a denial of\n service (segmentation fault) via vectors that trigger a\n stack-based buffer overflow.(CVE-2014-4975)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the EulerOS security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "modified": "2018-11-21T00:00:00", "id": "EULEROS_SA-2018-1374.NASL", "href": "https://www.tenable.com/plugins/nessus/119065", "published": "2018-11-21T00:00:00", "title": "EulerOS Virtualization 2.5.1 : ruby (EulerOS-SA-2018-1374)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(119065);\n script_version(\"1.34\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/07/21\");\n\n script_cve_id(\n \"CVE-2014-4975\",\n \"CVE-2014-8080\",\n \"CVE-2014-8090\"\n );\n script_bugtraq_id(\n 68474,\n 70935,\n 71230\n );\n\n script_name(english:\"EulerOS Virtualization 2.5.1 : ruby (EulerOS-SA-2018-1374)\");\n script_summary(english:\"Checks the rpm output for the updated packages.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote EulerOS Virtualization host is missing multiple security\nupdates.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to the versions of the ruby packages installed, the EulerOS\nVirtualization installation on the remote host is affected by the\nfollowing vulnerabilities :\n\n - The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x\n before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote\n attackers to cause a denial of service (memory\n consumption) via a crafted XML document, aka an XML\n Entity Expansion (XEE) attack.i1/4^CVE-2014-8080i1/4%0\n\n - The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel\n 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x\n before 2.1.5 allows remote attackers to cause a denial\n of service (CPU and memory consumption) a crafted XML\n document containing an empty string in an entity that\n is used in a large number of nested entity references,\n aka an XML Entity Expansion (XEE) attack. NOTE: this\n vulnerability exists because of an incomplete fix for\n CVE-2013-1821 and CVE-2014-8080.i1/4^CVE-2014-8090i1/4%0\n\n - Off-by-one error in the encodes function in pack.c in\n Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when\n using certain format string specifiers, allows\n context-dependent attackers to cause a denial of\n service (segmentation fault) via vectors that trigger a\n stack-based buffer overflow.(CVE-2014-4975)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the EulerOS security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\");\n # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2018-1374\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?688a1521\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected ruby packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/11/11\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/11/21\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:ruby\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:ruby-irb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:ruby-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:rubygem-bigdecimal\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:rubygem-io-console\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:rubygem-json\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:rubygem-psych\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:rubygem-rdoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:rubygems\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:huawei:euleros:uvp:2.5.1\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Huawei Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/EulerOS/release\", \"Host/EulerOS/rpm-list\", \"Host/EulerOS/uvp_version\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/EulerOS/release\");\nif (isnull(release) || release !~ \"^EulerOS\") audit(AUDIT_OS_NOT, \"EulerOS\");\nuvp = get_kb_item(\"Host/EulerOS/uvp_version\");\nif (uvp != \"2.5.1\") audit(AUDIT_OS_NOT, \"EulerOS Virtualization 2.5.1\");\nif (!get_kb_item(\"Host/EulerOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"aarch64\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"EulerOS\", cpu);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_ARCH_NOT, \"i686 / x86_64\", cpu);\n\nflag = 0;\n\npkgs = [\"ruby-2.0.0.353-23.h9\",\n \"ruby-irb-2.0.0.353-23.h9\",\n \"ruby-libs-2.0.0.353-23.h9\",\n \"rubygem-bigdecimal-1.2.0-23.h9\",\n \"rubygem-io-console-0.4.2-23.h9\",\n \"rubygem-json-1.7.7-23.h9\",\n \"rubygem-psych-2.0.0-23.h9\",\n \"rubygem-rdoc-4.0.0-23.h9\",\n \"rubygems-2.0.14-23.h9\"];\n\nforeach (pkg in pkgs)\n if (rpm_check(release:\"EulerOS-2.0\", reference:pkg)) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ruby\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-03-18T02:47:18", "bulletinFamily": "scanner", "description": "Multiple denial of service flaws were found in the way the Ruby REXML\nXML parser performed expansion of parameter entities. A specially\ncrafted XML document could cause REXML to use an excessive amount of\nCPU and memory. (CVE-2014-8080, CVE-2014-8090)\n\nAll running instances of Ruby need to be restarted for this update to\ntake effect.", "modified": "2014-12-02T00:00:00", "id": "SL_20141126_RUBY_ON_SL6_X.NASL", "href": "https://www.tenable.com/plugins/nessus/79657", "published": "2014-12-02T00:00:00", "title": "Scientific Linux Security Update : ruby on SL6.x i386/x86_64 (20141126)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79657);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/02/25\");\n\n script_cve_id(\"CVE-2014-8080\", \"CVE-2014-8090\");\n\n script_name(english:\"Scientific Linux Security Update : ruby on SL6.x i386/x86_64 (20141126)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple denial of service flaws were found in the way the Ruby REXML\nXML parser performed expansion of parameter entities. A specially\ncrafted XML document could cause REXML to use an excessive amount of\nCPU and memory. (CVE-2014-8080, CVE-2014-8090)\n\nAll running instances of Ruby need to be restarted for this update to\ntake effect.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1412&L=scientific-linux-errata&T=0&P=194\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?8329d7b1\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-docs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-irb\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-libs\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-rdoc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-ri\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-static\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ruby-tcltk\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2014/11/03\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/11/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/02\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nos_ver = pregmatch(pattern: \"Scientific Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Scientific Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Scientific Linux 6.x\", \"Scientific Linux \" + os_ver);\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL6\", reference:\"ruby-1.8.7.374-3.el6_6\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"ruby-debuginfo-1.8.7.374-3.el6_6\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"ruby-devel-1.8.7.374-3.el6_6\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"ruby-docs-1.8.7.374-3.el6_6\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"ruby-irb-1.8.7.374-3.el6_6\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"ruby-libs-1.8.7.374-3.el6_6\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"ruby-rdoc-1.8.7.374-3.el6_6\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"ruby-ri-1.8.7.374-3.el6_6\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"ruby-static-1.8.7.374-3.el6_6\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"ruby-tcltk-1.8.7.374-3.el6_6\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ruby / ruby-debuginfo / ruby-devel / ruby-docs / ruby-irb / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "debian": [{"lastseen": "2020-07-14T12:49:00", "bulletinFamily": "unix", "description": "Package : ruby1.9.1\nVersion : 1.9.2.0-2+deb6u3\nCVE ID : CVE-2014-4975 CVE-2014-8080 CVE-2014-8090\n\nCVE-2014-4975\n\n The encodes() function in pack.c had an off-by-one error that could\n lead to a stack-based buffer overflow. This could allow remote\n attackers to cause a denial of service (crash) or arbitrary code\n execution.\n\nCVE-2014-8080, CVE-2014-8090\n\n The REXML parser could be coerced into allocating large string\n objects that could consume all available memory on the system. This\n could allow remote attackers to cause a denial of service (crash).\n", "modified": "2015-04-15T18:30:35", "published": "2015-04-15T18:30:35", "id": "DEBIAN:DLA-200-1:A49C4", "href": "https://lists.debian.org/debian-lts-announce/2015/debian-lts-announce-201504/msg00013.html", "title": "[SECURITY] [DLA 200-1] ruby1.9.1 security update", "type": "debian", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-07-14T12:52:38", "bulletinFamily": "unix", "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-3157-1 security@debian.org\nhttp://www.debian.org/security/ Alessandro Ghedini\nFebruary 09, 2015 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : ruby1.9.1\nCVE ID : CVE-2014-4975 CVE-2014-8080 CVE-2014-8090\n\nMultiple vulnerabilities were discovered in the interpreter for the Ruby\nlanguage:\n\nCVE-2014-4975\n\n The encodes() function in pack.c had an off-by-one error that could\n lead to a stack-based buffer overflow. This could allow remote\n attackers to cause a denial of service (crash) or arbitrary code\n execution.\n\nCVE-2014-8080, CVE-2014-8090\n\n The REXML parser could be coerced into allocating large string\n objects that could consume all available memory on the system. This\n could allow remote attackers to cause a denial of service (crash).\n\nFor the stable distribution (wheezy), these problems have been fixed in\nversion 1.9.3.194-8.1+deb7u3.\n\nFor the upcoming stable distribution (jessie), these problems have been\nfixed in version 2.1.5-1 of the ruby2.1 source package.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 2.1.5-1 of the ruby2.1 source package.\n\nWe recommend that you upgrade your ruby1.9.1 packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "modified": "2015-02-09T17:10:42", "published": "2015-02-09T17:10:42", "id": "DEBIAN:DSA-3157-1:362C4", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2015/msg00042.html", "title": "[SECURITY] [DSA 3157-1] ruby1.9.1 security update", "type": "debian", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-07-14T12:46:32", "bulletinFamily": "unix", "description": "- -------------------------------------------------------------------------\nDebian Security Advisory DSA-3159-1 security@debian.org\nhttp://www.debian.org/security/ Alessandro Ghedini\nFebruary 10, 2015 http://www.debian.org/security/faq\n- -------------------------------------------------------------------------\n\nPackage : ruby1.8\nCVE ID : CVE-2014-8080 CVE-2014-8090\n\nIt was discovered that the REXML parser, part of the interpreter for the\nRuby language, could be coerced into allocating large string objects that\ncould consume all available memory on the system. This could allow remote\nattackers to cause a denial of service (crash).\n\nFor the stable distribution (wheezy), this problem has been fixed in version\n1.8.7.358-7.1+deb7u2.\n\nFor the upcoming stable distribution (jessie), this problem has been fixed in\nversion 2.1.5-1 of the ruby2.1 source package.\n\nFor the unstable distribution (sid), this problem has been fixed in version\n2.1.5-1 of the ruby2.1 source package.\n\nWe recommend that you upgrade your ruby1.8 packages.\n\nFurther information about Debian Security Advisories, how to apply\nthese updates to your system and frequently asked questions can be\nfound at: https://www.debian.org/security/\n\nMailing list: debian-security-announce@lists.debian.org\n", "modified": "2015-02-10T17:49:41", "published": "2015-02-10T17:49:41", "id": "DEBIAN:DSA-3159-1:E4038", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2015/msg00044.html", "title": "[SECURITY] [DSA 3159-1] ruby1.8 security update", "type": "debian", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-07-14T13:02:42", "bulletinFamily": "unix", "description": "Package : ruby1.8\nVersion : 1.8.7.302-2squeeze3\nCVE ID : CVE-2011-0188 CVE-2011-2686 CVE-2011-2705 CVE-2011-4815\n CVE-2014-8080 CVE-2014-8090\n\nThis update fixes multiple local and remote denial of service and remote code\nexecute problems:\n\nCVE-2011-0188 \n \nProperly allocate memory, to prevent arbitrary code execution or application \ncrash. Reported by Drew Yao.\n\nCVE-2011-2686\n\nReinitialize the random seed when forking to prevent CVE-2003-0900 like \nsituations.\n\nCVE-2011-2705 \n \nModify PRNG state to prevent random number sequence repeatation at forked \nchild process which has same pid. Reported by Eric Wong.\n\nCVE-2011-4815\n\nFix a problem with predictable hash collisions resulting in denial of service \n(CPU consumption) attacks. Reported by Alexander Klink and Julian Waelde.\n\nCVE-2014-8080\n\nFix REXML parser to prevent memory consumption denial of service via crafted \nXML documents. Reported by Willis Vandevanter.\n\nCVE-2014-8090\n\nAdd REXML::Document#document to complement the fix for CVE-2014-8080.\nReported by Tomas Hoger.\n", "modified": "2014-11-21T15:25:09", "published": "2014-11-21T15:25:09", "id": "DEBIAN:DLA-88-1:4DC9E", "href": "https://lists.debian.org/debian-lts-announce/2014/debian-lts-announce-201411/msg00007.html", "title": "[SECURITY] [DLA 88-1] ruby1.8 security update", "type": "debian", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}}], "redhat": [{"lastseen": "2019-08-13T18:44:55", "bulletinFamily": "unix", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby193-ruby users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues. All running\ninstances of Ruby need to be restarted for this update to take effect.\n", "modified": "2018-06-13T01:28:27", "published": "2014-11-26T05:00:00", "id": "RHSA-2014:1913", "href": "https://access.redhat.com/errata/RHSA-2014:1913", "type": "redhat", "title": "(RHSA-2014:1913) Moderate: ruby193-ruby security update", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-08-13T18:45:27", "bulletinFamily": "unix", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. All running instances\nof Ruby need to be restarted for this update to take effect.\n", "modified": "2018-04-12T03:33:11", "published": "2014-11-26T05:00:00", "id": "RHSA-2014:1912", "href": "https://access.redhat.com/errata/RHSA-2014:1912", "type": "redhat", "title": "(RHSA-2014:1912) Moderate: ruby security update", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-08-13T18:45:04", "bulletinFamily": "unix", "description": "Ruby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. All running instances\nof Ruby need to be restarted for this update to take effect.\n", "modified": "2018-06-06T20:24:10", "published": "2014-11-26T05:00:00", "id": "RHSA-2014:1911", "href": "https://access.redhat.com/errata/RHSA-2014:1911", "type": "redhat", "title": "(RHSA-2014:1911) Moderate: ruby security update", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "centos": [{"lastseen": "2019-12-20T18:28:08", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2014:1912\n\n\nRuby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nA stack-based buffer overflow was found in the implementation of the Ruby\nArray pack() method. When performing base64 encoding, a single byte could\nbe written past the end of the buffer, possibly causing Ruby to crash.\n(CVE-2014-4975)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. All running instances\nof Ruby need to be restarted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2014-December/032830.html\n\n**Affected packages:**\nruby\nruby-devel\nruby-doc\nruby-irb\nruby-libs\nruby-tcltk\nrubygem-bigdecimal\nrubygem-io-console\nrubygem-json\nrubygem-minitest\nrubygem-psych\nrubygem-rake\nrubygem-rdoc\nrubygems\nrubygems-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2014-1912.html", "modified": "2014-12-01T13:45:48", "published": "2014-12-01T13:45:48", "href": "http://lists.centos.org/pipermail/centos-announce/2014-December/032830.html", "id": "CESA-2014:1912", "title": "ruby, rubygem, rubygems security update", "type": "centos", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-12-20T18:28:01", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2014:1911\n\n\nRuby is an extensible, interpreted, object-oriented, scripting language.\nIt has features to process text files and to perform system management\ntasks.\n\nMultiple denial of service flaws were found in the way the Ruby REXML XML\nparser performed expansion of parameter entities. A specially crafted XML\ndocument could cause REXML to use an excessive amount of CPU and memory.\n(CVE-2014-8080, CVE-2014-8090)\n\nThe CVE-2014-8090 issue was discovered by Red Hat Product Security.\n\nAll ruby users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues. All running instances\nof Ruby need to be restarted for this update to take effect.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2014-December/032829.html\n\n**Affected packages:**\nruby\nruby-devel\nruby-docs\nruby-irb\nruby-libs\nruby-rdoc\nruby-ri\nruby-static\nruby-tcltk\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2014-1911.html", "modified": "2014-12-01T12:57:41", "published": "2014-12-01T12:57:41", "href": "http://lists.centos.org/pipermail/centos-announce/2014-December/032829.html", "id": "CESA-2014:1911", "title": "ruby security update", "type": "centos", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "openvas": [{"lastseen": "2019-05-29T18:36:21", "bulletinFamily": "scanner", "description": "Oracle Linux Local Security Checks ELSA-2014-1912", "modified": "2018-09-28T00:00:00", "published": "2015-10-06T00:00:00", "id": "OPENVAS:1361412562310123240", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123240", "title": "Oracle Linux Local Check: ELSA-2014-1912", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2014-1912.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.123240\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:01:09 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2014-1912\");\n script_tag(name:\"insight\", value:\"ELSA-2014-1912 - ruby security update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2014-1912\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2014-1912.html\");\n script_cve_id(\"CVE-2014-8080\", \"CVE-2014-8090\", \"CVE-2014-4975\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux7\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux7\")\n{\n if ((res = isrpmvuln(pkg:\"ruby\", rpm:\"ruby~2.0.0.353~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-devel\", rpm:\"ruby-devel~2.0.0.353~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-doc\", rpm:\"ruby-doc~2.0.0.353~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-irb\", rpm:\"ruby-irb~2.0.0.353~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-libs\", rpm:\"ruby-libs~2.0.0.353~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-tcltk\", rpm:\"ruby-tcltk~2.0.0.353~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"rubygem-bigdecimal\", rpm:\"rubygem-bigdecimal~1.2.0~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"rubygem-io-console\", rpm:\"rubygem-io-console~0.4.2~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"rubygem-json\", rpm:\"rubygem-json~1.7.7~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"rubygem-minitest\", rpm:\"rubygem-minitest~4.3.2~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"rubygem-psych\", rpm:\"rubygem-psych~2.0.0~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"rubygem-rake\", rpm:\"rubygem-rake~0.9.6~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"rubygem-rdoc\", rpm:\"rubygem-rdoc~4.0.0~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"rubygems\", rpm:\"rubygems~2.0.14~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"rubygems-devel\", rpm:\"rubygems-devel~2.0.14~22.el7_0\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T18:35:52", "bulletinFamily": "scanner", "description": "Multiple vulnerabilities were\ndiscovered in the interpreter for the Ruby language:\n\nCVE-2014-4975\nThe encodes() function in pack.c had an off-by-one error that could\nlead to a stack-based buffer overflow. This could allow remote\nattackers to cause a denial of service (crash) or arbitrary code\nexecution.\n\nCVE-2014-8080,\nCVE-2014-8090\nThe REXML parser could be coerced into allocating large string\nobjects that could consume all available memory on the system. This\ncould allow remote attackers to cause a denial of service (crash).", "modified": "2019-03-18T00:00:00", "published": "2015-02-09T00:00:00", "id": "OPENVAS:1361412562310703157", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310703157", "title": "Debian Security Advisory DSA 3157-1 (ruby1.9.1 - security update)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3157.nasl 14278 2019-03-18 14:47:26Z cfischer $\n# Auto-generated from advisory DSA 3157-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.703157\");\n script_version(\"$Revision: 14278 $\");\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\", \"CVE-2014-8090\");\n script_name(\"Debian Security Advisory DSA 3157-1 (ruby1.9.1 - security update)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-18 15:47:26 +0100 (Mon, 18 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2015-02-09 00:00:00 +0100 (Mon, 09 Feb 2015)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name:\"URL\", value:\"http://www.debian.org/security/2015/dsa-3157.html\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB7\");\n script_tag(name:\"affected\", value:\"ruby1.9.1 on Debian Linux\");\n script_tag(name:\"solution\", value:\"For the stable distribution (wheezy),\nthese problems have been fixed in version 1.9.3.194-8.1+deb7u3.\n\nFor the upcoming stable distribution (jessie), these problems have been\nfixed in version 2.1.5-1 of the ruby2.1 source package.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 2.1.5-1 of the ruby2.1 source package.\n\nWe recommend that you upgrade your ruby1.9.1 packages.\");\n script_tag(name:\"summary\", value:\"Multiple vulnerabilities were\ndiscovered in the interpreter for the Ruby language:\n\nCVE-2014-4975\nThe encodes() function in pack.c had an off-by-one error that could\nlead to a stack-based buffer overflow. This could allow remote\nattackers to cause a denial of service (crash) or arbitrary code\nexecution.\n\nCVE-2014-8080,\nCVE-2014-8090\nThe REXML parser could be coerced into allocating large string\nobjects that could consume all available memory on the system. This\ncould allow remote attackers to cause a denial of service (crash).\");\n script_tag(name:\"vuldetect\", value:\"This check tests the installed\nsoftware version using the apt package manager.\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif((res = isdpkgvuln(pkg:\"libruby1.9.1\", ver:\"1.9.3.194-8.1+deb7u3\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libruby1.9.1-dbg\", ver:\"1.9.3.194-8.1+deb7u3\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libtcltk-ruby1.9.1\", ver:\"1.9.3.194-8.1+deb7u3\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ri1.9.1\", ver:\"1.9.3.194-8.1+deb7u3\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ruby1.9.1\", ver:\"1.9.3.194-8.1+deb7u3\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ruby1.9.1-dev\", ver:\"1.9.3.194-8.1+deb7u3\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ruby1.9.1-examples\", ver:\"1.9.3.194-8.1+deb7u3\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ruby1.9.1-full\", ver:\"1.9.3.194-8.1+deb7u3\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ruby1.9.3\", ver:\"1.9.3.194-8.1+deb7u3\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2017-07-25T10:53:28", "bulletinFamily": "scanner", "description": "Multiple vulnerabilities were\ndiscovered in the interpreter for the Ruby language:\n\nCVE-2014-4975\nThe encodes() function in pack.c had an off-by-one error that could\nlead to a stack-based buffer overflow. This could allow remote\nattackers to cause a denial of service (crash) or arbitrary code\nexecution.\n\nCVE-2014-8080,\nCVE-2014-8090\nThe REXML parser could be coerced into allocating large string\nobjects that could consume all available memory on the system. This\ncould allow remote attackers to cause a denial of service (crash).", "modified": "2017-07-10T00:00:00", "published": "2015-02-09T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=703157", "id": "OPENVAS:703157", "title": "Debian Security Advisory DSA 3157-1 (ruby1.9.1 - security update)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3157.nasl 6637 2017-07-10 09:58:13Z teissa $\n# Auto-generated from advisory DSA 3157-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\n\nif(description)\n{\n script_id(703157);\n script_version(\"$Revision: 6637 $\");\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\", \"CVE-2014-8090\");\n script_name(\"Debian Security Advisory DSA 3157-1 (ruby1.9.1 - security update)\");\n script_tag(name: \"last_modification\", value: \"$Date: 2017-07-10 11:58:13 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name: \"creation_date\", value: \"2015-02-09 00:00:00 +0100 (Mon, 09 Feb 2015)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_tag(name: \"solution_type\", value: \"VendorFix\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2015/dsa-3157.html\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: \"ruby1.9.1 on Debian Linux\");\n script_tag(name: \"insight\", value: \"Ruby is the interpreted scripting\nlanguage for quick and easy object-oriented programming. It has many features\nto process text files and to do system management tasks (as in perl). It is\nsimple, straight-forward, and extensible.\");\n script_tag(name: \"solution\", value: \"For the stable distribution (wheezy),\nthese problems have been fixed in version 1.9.3.194-8.1+deb7u3.\n\nFor the upcoming stable distribution (jessie), these problems have been\nfixed in version 2.1.5-1 of the ruby2.1 source package.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 2.1.5-1 of the ruby2.1 source package.\n\nWe recommend that you upgrade your ruby1.9.1 packages.\");\n script_tag(name: \"summary\", value: \"Multiple vulnerabilities were\ndiscovered in the interpreter for the Ruby language:\n\nCVE-2014-4975\nThe encodes() function in pack.c had an off-by-one error that could\nlead to a stack-based buffer overflow. This could allow remote\nattackers to cause a denial of service (crash) or arbitrary code\nexecution.\n\nCVE-2014-8080,\nCVE-2014-8090\nThe REXML parser could be coerced into allocating large string\nobjects that could consume all available memory on the system. This\ncould allow remote attackers to cause a denial of service (crash).\");\n script_tag(name: \"vuldetect\", value: \"This check tests the installed\nsoftware version using the apt package manager.\");\n script_tag(name:\"qod_type\", value:\"package\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libruby1.9.1\", ver:\"1.9.3.194-8.1+deb7u3\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libruby1.9.1-dbg\", ver:\"1.9.3.194-8.1+deb7u3\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtcltk-ruby1.9.1\", ver:\"1.9.3.194-8.1+deb7u3\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ri1.9.1\", ver:\"1.9.3.194-8.1+deb7u3\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ruby1.9.1\", ver:\"1.9.3.194-8.1+deb7u3\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ruby1.9.1-dev\", ver:\"1.9.3.194-8.1+deb7u3\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ruby1.9.1-examples\", ver:\"1.9.3.194-8.1+deb7u3\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ruby1.9.1-full\", ver:\"1.9.3.194-8.1+deb7u3\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ruby1.9.3\", ver:\"1.9.3.194-8.1+deb7u3\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2019-05-29T18:35:10", "bulletinFamily": "scanner", "description": "Oracle Linux Local Security Checks ELSA-2014-1913", "modified": "2019-03-14T00:00:00", "published": "2016-02-05T00:00:00", "id": "OPENVAS:1361412562310122872", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122872", "title": "Oracle Linux Local Check: ELSA-2014-1913", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2014-1913.nasl 14180 2019-03-14 12:29:16Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2016 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.122872\");\n script_version(\"$Revision: 14180 $\");\n script_tag(name:\"creation_date\", value:\"2016-02-05 14:01:41 +0200 (Fri, 05 Feb 2016)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-14 13:29:16 +0100 (Thu, 14 Mar 2019) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2014-1913\");\n script_tag(name:\"insight\", value:\"ELSA-2014-1913 - ruby193-ruby security update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2014-1913\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2014-1913.html\");\n script_cve_id(\"CVE-2014-8080\", \"CVE-2014-8090\", \"CVE-2014-4975\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux6\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"ruby193-ruby\", rpm:\"ruby193-ruby~1.9.3.484~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-ruby-devel\", rpm:\"ruby193-ruby-devel~1.9.3.484~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-ruby-doc\", rpm:\"ruby193-ruby-doc~1.9.3.484~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-ruby-irb\", rpm:\"ruby193-ruby-irb~1.9.3.484~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-ruby-libs\", rpm:\"ruby193-ruby-libs~1.9.3.484~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-ruby-tcltk\", rpm:\"ruby193-ruby-tcltk~1.9.3.484~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-rubygem-bigdecimal\", rpm:\"ruby193-rubygem-bigdecimal~1.1.0~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-rubygem-io-console\", rpm:\"ruby193-rubygem-io-console~0.3~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-rubygem-json\", rpm:\"ruby193-rubygem-json~1.5.5~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-rubygem-minitest\", rpm:\"ruby193-rubygem-minitest~2.5.1~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-rubygem-rake\", rpm:\"ruby193-rubygem-rake~0.9.2.2~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-rubygem-rdoc\", rpm:\"ruby193-rubygem-rdoc~3.9.5~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-rubygems\", rpm:\"ruby193-rubygems~1.8.23~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby193-rubygems-devel\", rpm:\"ruby193-rubygems-devel~1.8.23~50.0.1.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-01-27T18:36:40", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the Huawei EulerOS\n ", "modified": "2020-01-23T00:00:00", "published": "2020-01-23T00:00:00", "id": "OPENVAS:1361412562311220181374", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562311220181374", "title": "Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2018-1374)", "type": "openvas", "sourceData": "# Copyright (C) 2020 Greenbone Networks GmbH\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) the respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.1.2.2018.1374\");\n script_version(\"2020-01-23T11:23:43+0000\");\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\", \"CVE-2014-8090\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_tag(name:\"last_modification\", value:\"2020-01-23 11:23:43 +0000 (Thu, 23 Jan 2020)\");\n script_tag(name:\"creation_date\", value:\"2020-01-23 11:23:43 +0000 (Thu, 23 Jan 2020)\");\n script_name(\"Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2018-1374)\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2020 Greenbone Networks GmbH\");\n script_family(\"Huawei EulerOS Local Security Checks\");\n script_dependencies(\"gb_huawei_euleros_consolidation.nasl\");\n script_mandatory_keys(\"ssh/login/euleros\", \"ssh/login/rpms\", re:\"ssh/login/release=EULEROSVIRT-2\\.5\\.1\");\n\n script_xref(name:\"EulerOS-SA\", value:\"2018-1374\");\n script_xref(name:\"URL\", value:\"https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2018-1374\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the Huawei EulerOS\n 'ruby' package(s) announced via the EulerOS-SA-2018-1374 advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable package version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.CVE-2014-8080\n\nThe REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nested entity references, aka an XML Entity Expansion (XEE) attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1821 and CVE-2014-8080.CVE-2014-8090\n\nOff-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a denial of service (segmentation fault) via vectors that trigger a stack-based buffer overflow.(CVE-2014-4975)\");\n\n script_tag(name:\"affected\", value:\"'ruby' package(s) on Huawei EulerOS Virtualization 2.5.1.\");\n\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"EULEROSVIRT-2.5.1\") {\n\n if(!isnull(res = isrpmvuln(pkg:\"ruby\", rpm:\"ruby~2.0.0.353~23.h9\", rls:\"EULEROSVIRT-2.5.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"ruby-irb\", rpm:\"ruby-irb~2.0.0.353~23.h9\", rls:\"EULEROSVIRT-2.5.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"ruby-libs\", rpm:\"ruby-libs~2.0.0.353~23.h9\", rls:\"EULEROSVIRT-2.5.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem-bigdecimal\", rpm:\"rubygem-bigdecimal~1.2.0~23.h9\", rls:\"EULEROSVIRT-2.5.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem-io-console\", rpm:\"rubygem-io-console~0.4.2~23.h9\", rls:\"EULEROSVIRT-2.5.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem-json\", rpm:\"rubygem-json~1.7.7~23.h9\", rls:\"EULEROSVIRT-2.5.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem-psych\", rpm:\"rubygem-psych~2.0.0~23.h9\", rls:\"EULEROSVIRT-2.5.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem-rdoc\", rpm:\"rubygem-rdoc~4.0.0~23.h9\", rls:\"EULEROSVIRT-2.5.1\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygems\", rpm:\"rubygems~2.0.14~23.h9\", rls:\"EULEROSVIRT-2.5.1\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if (__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-03-17T23:00:55", "bulletinFamily": "scanner", "description": "The remote host is missing an update announced via the referenced Security Advisory.", "modified": "2020-03-13T00:00:00", "published": "2015-09-08T00:00:00", "id": "OPENVAS:1361412562310120426", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310120426", "title": "Amazon Linux: Security Advisory (ALAS-2014-447)", "type": "openvas", "sourceData": "# Copyright (C) 2015 Eero Volotinen\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) of their respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.120426\");\n script_version(\"2020-03-13T13:19:50+0000\");\n script_tag(name:\"creation_date\", value:\"2015-09-08 13:26:05 +0200 (Tue, 08 Sep 2015)\");\n script_tag(name:\"last_modification\", value:\"2020-03-13 13:19:50 +0000 (Fri, 13 Mar 2020)\");\n script_name(\"Amazon Linux: Security Advisory (ALAS-2014-447)\");\n script_tag(name:\"insight\", value:\"The upstream patch for CVE-2014-8080 introduced checks against the REXML.entity_expansion_text_limit, but did not add restrictions to limit the number of expansions performed, i.e. checks against the REXML::Document.entity_expansion_limit. As a consequence, even with the patch applied, a small XML document could cause REXML to use an excessive amount of CPU time. High memory usage can be achieved using larger inputs.\");\n script_tag(name:\"solution\", value:\"Run yum update ruby19 to update your system.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"URL\", value:\"https://alas.aws.amazon.com/ALAS-2014-447.html\");\n script_cve_id(\"CVE-2014-8090\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/amazon_linux\", \"ssh/login/release\");\n script_category(ACT_GATHER_INFO);\n script_tag(name:\"summary\", value:\"The remote host is missing an update announced via the referenced Security Advisory.\");\n script_copyright(\"Copyright (C) 2015 Eero Volotinen\");\n script_family(\"Amazon Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"AMAZON\") {\n if(!isnull(res = isrpmvuln(pkg:\"ruby19-debuginfo\", rpm:\"ruby19-debuginfo~1.9.3.551~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem19-json\", rpm:\"rubygem19-json~1.5.5~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem19-bigdecimal\", rpm:\"rubygem19-bigdecimal~1.1.0~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"ruby19-doc\", rpm:\"ruby19-doc~1.9.3.551~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem19-io-console\", rpm:\"rubygem19-io-console~0.3~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"ruby19-libs\", rpm:\"ruby19-libs~1.9.3.551~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"ruby19\", rpm:\"ruby19~1.9.3.551~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygems19\", rpm:\"rubygems19~1.8.23.2~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem19-rdoc\", rpm:\"rubygem19-rdoc~3.9.5~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem19-minitest\", rpm:\"rubygem19-minitest~2.5.1~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygems19-devel\", rpm:\"rubygems19-devel~1.8.23.2~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"rubygem19-rake\", rpm:\"rubygem19-rake~0.9.2.2~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"ruby19-irb\", rpm:\"ruby19-irb~1.9.3.551~32.64.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:36:07", "bulletinFamily": "scanner", "description": "It was discovered that the REXML parser,\npart of the interpreter for the Ruby language, could be coerced into allocating\nlarge string objects that could consume all available memory on the system. This\ncould allow remote attackers to cause a denial of service (crash).", "modified": "2019-03-18T00:00:00", "published": "2015-02-10T00:00:00", "id": "OPENVAS:1361412562310703159", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310703159", "title": "Debian Security Advisory DSA 3159-1 (ruby1.8 - security update)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3159.nasl 14278 2019-03-18 14:47:26Z cfischer $\n# Auto-generated from advisory DSA 3159-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.703159\");\n script_version(\"$Revision: 14278 $\");\n script_cve_id(\"CVE-2014-8080\", \"CVE-2014-8090\");\n script_name(\"Debian Security Advisory DSA 3159-1 (ruby1.8 - security update)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-18 15:47:26 +0100 (Mon, 18 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2015-02-10 00:00:00 +0100 (Tue, 10 Feb 2015)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name:\"URL\", value:\"http://www.debian.org/security/2015/dsa-3159.html\");\n\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB7\");\n script_tag(name:\"affected\", value:\"ruby1.8 on Debian Linux\");\n script_tag(name:\"solution\", value:\"For the stable distribution (wheezy),\nthis problem has been fixed in version 1.8.7.358-7.1+deb7u2.\n\nFor the upcoming stable distribution (jessie), this problem has been fixed in\nversion 2.1.5-1 of the ruby2.1 source package.\n\nFor the unstable distribution (sid), this problem has been fixed in version\n2.1.5-1 of the ruby2.1 source package.\n\nWe recommend that you upgrade your ruby1.8 packages.\");\n script_tag(name:\"summary\", value:\"It was discovered that the REXML parser,\npart of the interpreter for the Ruby language, could be coerced into allocating\nlarge string objects that could consume all available memory on the system. This\ncould allow remote attackers to cause a denial of service (crash).\");\n script_tag(name:\"vuldetect\", value:\"This check tests the installed software\nversion using the apt package manager.\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif((res = isdpkgvuln(pkg:\"libruby1.8\", ver:\"1.8.7.358-7.1+deb7u2\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libruby1.8-dbg\", ver:\"1.8.7.358-7.1+deb7u2\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"libtcltk-ruby1.8\", ver:\"1.8.7.358-7.1+deb7u2\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ri1.8\", ver:\"1.8.7.358-7.1+deb7u2\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ruby1.8\", ver:\"1.8.7.358-7.1+deb7u2\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ruby1.8-dev\", ver:\"1.8.7.358-7.1+deb7u2\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ruby1.8-examples\", ver:\"1.8.7.358-7.1+deb7u2\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\nif((res = isdpkgvuln(pkg:\"ruby1.8-full\", ver:\"1.8.7.358-7.1+deb7u2\", rls:\"DEB7\")) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:37:24", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-13T00:00:00", "published": "2014-11-05T00:00:00", "id": "OPENVAS:1361412562310842020", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310842020", "title": "Ubuntu Update for ruby2.0 USN-2397-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_2397_1.nasl 14140 2019-03-13 12:26:09Z cfischer $\n#\n# Ubuntu Update for ruby2.0 USN-2397-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2014 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.842020\");\n script_version(\"$Revision: 14140 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-13 13:26:09 +0100 (Wed, 13 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2014-11-05 06:22:31 +0100 (Wed, 05 Nov 2014)\");\n script_cve_id(\"CVE-2014-4975\", \"CVE-2014-8080\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:N/A:N\");\n script_name(\"Ubuntu Update for ruby2.0 USN-2397-1\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'ruby2.0'\n package(s) announced via the referenced advisory.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Will Wood discovered that Ruby incorrectly\nhandled the encodes() function. An attacker could possibly use this issue to\ncause Ruby to crash, resulting in a denial of service, or possibly execute arbitrary code.\nThe default compiler options for affected releases should reduce the vulnerability to a\ndenial of service. (CVE-2014-4975) Willis Vandevanter discovered that Ruby incorrectly\nhandled XML entity expansion. An attacker could use this flaw to cause Ruby to consume\nlarge amounts of resources, resulting in a denial of service. (CVE-2014-8080)\");\n script_tag(name:\"affected\", value:\"ruby2.0 on Ubuntu 14.04 LTS,\n Ubuntu 12.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"USN\", value:\"2397-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2397-1/\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2014 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU(14\\.04 LTS|12\\.04 LTS)\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"UBUNTU14.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libruby1.9.1\", ver:\"1.9.3.484-2ubuntu1.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"libruby2.0:amd64\", ver:\"2.0.0.484-1ubuntu2.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"libruby2.0:i386\", ver:\"2.0.0.484-1ubuntu2.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"ruby1.9.1\", ver:\"1.9.3.484-2ubuntu1.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"ruby2.0\", ver:\"2.0.0.484-1ubuntu2.1\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libruby1.8\", ver:\"1.8.7.352-2ubuntu1.5\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"libruby1.9.1\", ver:\"1.9.3.0-1ubuntu2.9\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"ruby1.8\", ver:\"1.8.7.352-2ubuntu1.5\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"ruby1.9.1\", ver:\"1.9.3.0-1ubuntu2.9\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2017-07-24T12:53:12", "bulletinFamily": "scanner", "description": "It was discovered that the REXML parser,\npart of the interpreter for the Ruby language, could be coerced into allocating\nlarge string objects that could consume all available memory on the system. This\ncould allow remote attackers to cause a denial of service (crash).", "modified": "2017-07-07T00:00:00", "published": "2015-02-10T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=703159", "id": "OPENVAS:703159", "title": "Debian Security Advisory DSA 3159-1 (ruby1.8 - security update)", "type": "openvas", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3159.nasl 6609 2017-07-07 12:05:59Z cfischer $\n# Auto-generated from advisory DSA 3159-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\n\nif(description)\n{\n script_id(703159);\n script_version(\"$Revision: 6609 $\");\n script_cve_id(\"CVE-2014-8080\", \"CVE-2014-8090\");\n script_name(\"Debian Security Advisory DSA 3159-1 (ruby1.8 - security update)\");\n script_tag(name: \"last_modification\", value: \"$Date: 2017-07-07 14:05:59 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name: \"creation_date\", value: \"2015-02-10 00:00:00 +0100 (Tue, 10 Feb 2015)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name: \"solution_type\", value: \"VendorFix\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2015/dsa-3159.html\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: \"ruby1.8 on Debian Linux\");\n script_tag(name: \"insight\", value: \"Ruby is the interpreted scripting\nlanguage for quick and easy object-oriented programming. It has many features\nto process text files and to do system management tasks (as in perl). It is\nsimple, straight-forward, and extensible.\");\n script_tag(name: \"solution\", value: \"For the stable distribution (wheezy),\nthis problem has been fixed in version 1.8.7.358-7.1+deb7u2.\n\nFor the upcoming stable distribution (jessie), this problem has been fixed in\nversion 2.1.5-1 of the ruby2.1 source package.\n\nFor the unstable distribution (sid), this problem has been fixed in version\n2.1.5-1 of the ruby2.1 source package.\n\nWe recommend that you upgrade your ruby1.8 packages.\");\n script_tag(name: \"summary\", value: \"It was discovered that the REXML parser,\npart of the interpreter for the Ruby language, could be coerced into allocating\nlarge string objects that could consume all available memory on the system. This\ncould allow remote attackers to cause a denial of service (crash).\");\n script_tag(name: \"vuldetect\", value: \"This check tests the installed software\nversion using the apt package manager.\");\n script_tag(name:\"qod_type\", value:\"package\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libruby1.8\", ver:\"1.8.7.358-7.1+deb7u2\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libruby1.8-dbg\", ver:\"1.8.7.358-7.1+deb7u2\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtcltk-ruby1.8\", ver:\"1.8.7.358-7.1+deb7u2\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ri1.8\", ver:\"1.8.7.358-7.1+deb7u2\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ruby1.8\", ver:\"1.8.7.358-7.1+deb7u2\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ruby1.8-dev\", ver:\"1.8.7.358-7.1+deb7u2\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ruby1.8-examples\", ver:\"1.8.7.358-7.1+deb7u2\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"ruby1.8-full\", ver:\"1.8.7.358-7.1+deb7u2\", rls_regex:\"DEB7.[0-9]\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2019-05-29T18:36:50", "bulletinFamily": "scanner", "description": "Oracle Linux Local Security Checks ELSA-2014-1911", "modified": "2018-09-28T00:00:00", "published": "2015-10-06T00:00:00", "id": "OPENVAS:1361412562310123239", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123239", "title": "Oracle Linux Local Check: ELSA-2014-1911", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2014-1911.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.123239\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:01:09 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2014-1911\");\n script_tag(name:\"insight\", value:\"ELSA-2014-1911 - ruby security update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2014-1911\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2014-1911.html\");\n script_cve_id(\"CVE-2014-8080\", \"CVE-2014-8090\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux6\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"ruby\", rpm:\"ruby~1.8.7.374~3.el6_6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-devel\", rpm:\"ruby-devel~1.8.7.374~3.el6_6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-docs\", rpm:\"ruby-docs~1.8.7.374~3.el6_6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-irb\", rpm:\"ruby-irb~1.8.7.374~3.el6_6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-libs\", rpm:\"ruby-libs~1.8.7.374~3.el6_6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-rdoc\", rpm:\"ruby-rdoc~1.8.7.374~3.el6_6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-ri\", rpm:\"ruby-ri~1.8.7.374~3.el6_6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-static\", rpm:\"ruby-static~1.8.7.374~3.el6_6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ruby-tcltk\", rpm:\"ruby-tcltk~1.8.7.374~3.el6_6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "oraclelinux": [{"lastseen": "2019-05-29T18:35:02", "bulletinFamily": "unix", "description": "[1.9.3.484-50.0.1]\n- fix build issue: self test report 'dh key to small'\n[1.9.3.484-50]\n- Fix off-by-one stack-based buffer overflow in the encodes() function\n (CVE-2014-4975).\n Related: rhbz#1164004\n- Fix REXML billion laughs attack via parameter entity expansion\n (CVE-2014-8080).\n Related: rhbz#1164004\n- REXML incomplete fix for CVE-2014-8080 (CVE-2014-8090).\n Related: rhbz#1164004", "modified": "2016-02-04T00:00:00", "published": "2016-02-04T00:00:00", "id": "ELSA-2014-1913", "href": "http://linux.oracle.com/errata/ELSA-2014-1913.html", "title": "ruby193-ruby security update", "type": "oraclelinux", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T18:35:30", "bulletinFamily": "unix", "description": "[2.0.0.353-22]\n- Fix REXML billion laughs attack via parameter entity expansion\n (CVE-2014-8080).\n Resolves: rhbz#1163998\n- REXML incomplete fix for CVE-2014-8080 (CVE-2014-8090).\n Resolves: rhbz#1163998\n[2.0.0.353-21]\n- Fix off-by-one stack-based buffer overflow in the encodes() function\n (CVE-2014-4975)\n Resolves: rhbz#1163998\n[2.0.0.353-21]\n- Fix FTBFS with new tzdata\n Related: rhbz#1163998", "modified": "2014-11-26T00:00:00", "published": "2014-11-26T00:00:00", "id": "ELSA-2014-1912", "href": "http://linux.oracle.com/errata/ELSA-2014-1912.html", "title": "ruby security update", "type": "oraclelinux", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-05-29T18:36:50", "bulletinFamily": "unix", "description": "[1.8.7.374-3]\n- Fix REXML billion laughs attack via parameter entity expansion\n (CVE-2014-8080).\n Resolves: rhbz#1163993\n- REXML incomplete fix for CVE-2014-8080 (CVE-2014-8090).\n Resolves: rhbz#1163993", "modified": "2014-11-26T00:00:00", "published": "2014-11-26T00:00:00", "id": "ELSA-2014-1911", "href": "http://linux.oracle.com/errata/ELSA-2014-1911.html", "title": "ruby security update", "type": "oraclelinux", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "securityvulns": [{"lastseen": "2018-08-31T11:09:58", "bulletinFamily": "software", "description": "Resources exhaustion on XML parsing. Memory corruption in encodes&#40;&#41;.", "modified": "2014-11-24T00:00:00", "published": "2014-11-24T00:00:00", "id": "SECURITYVULNS:VULN:14099", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:14099", "title": "Ruby DoS", "type": "securityvulns", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2018-08-31T11:10:55", "bulletinFamily": "software", "description": "\r\n\r\n==========================================================================\r\nUbuntu Security Notice USN-2412-1\r\nNovember 20, 2014\r\n\r\nruby1.8, ruby1.9.1, ruby2.0, ruby2.1 vulnerability\r\n==========================================================================\r\n\r\nA security issue affects these releases of Ubuntu and its derivatives:\r\n\r\n- Ubuntu 14.10\r\n- Ubuntu 14.04 LTS\r\n- Ubuntu 12.04 LTS\r\n\r\nSummary:\r\n\r\nRuby could be made to consume resources.\r\n\r\nSoftware Description:\r\n- ruby2.0: Object-oriented scripting language\r\n- ruby2.1: Object-oriented scripting language\r\n- ruby1.9.1: Object-oriented scripting language\r\n- ruby1.8: Object-oriented scripting language\r\n\r\nDetails:\r\n\r\nTomas Hoger discovered that Ruby incorrectly handled XML entity expansion.\r\nAn attacker could use this flaw to cause Ruby to consume large amounts of\r\nresources, resulting in a denial of service.\r\n\r\nUpdate instructions:\r\n\r\nThe problem can be corrected by updating your system to the following\r\npackage versions:\r\n\r\nUbuntu 14.10:\r\n libruby2.0 2.0.0.484+really457-3ubuntu1.2\r\n libruby2.1 2.1.2-2ubuntu1.2\r\n ruby2.0 2.0.0.484+really457-3ubuntu1.2\r\n ruby2.1 2.1.2-2ubuntu1.2\r\n\r\nUbuntu 14.04 LTS:\r\n libruby1.9.1 1.9.3.484-2ubuntu1.2\r\n libruby2.0 2.0.0.484-1ubuntu2.2\r\n ruby1.9.1 1.9.3.484-2ubuntu1.2\r\n ruby2.0 2.0.0.484-1ubuntu2.2\r\n\r\nUbuntu 12.04 LTS:\r\n libruby1.8 1.8.7.352-2ubuntu1.6\r\n libruby1.9.1 1.9.3.0-1ubuntu2.10\r\n ruby1.8 1.8.7.352-2ubuntu1.6\r\n ruby1.9.1 1.9.3.0-1ubuntu2.10\r\n\r\nIn general, a standard system update will make all the necessary changes.\r\n\r\nReferences:\r\n http://www.ubuntu.com/usn/usn-2412-1\r\n CVE-2014-8090\r\n\r\nPackage Information:\r\n https://launchpad.net/ubuntu/+source/ruby2.0/2.0.0.484+really457-3ubuntu1.2\r\n https://launchpad.net/ubuntu/+source/ruby2.1/2.1.2-2ubuntu1.2\r\n https://launchpad.net/ubuntu/+source/ruby1.9.1/1.9.3.484-2ubuntu1.2\r\n https://launchpad.net/ubuntu/+source/ruby2.0/2.0.0.484-1ubuntu2.2\r\n https://launchpad.net/ubuntu/+source/ruby1.8/1.8.7.352-2ubuntu1.6\r\n https://launchpad.net/ubuntu/+source/ruby1.9.1/1.9.3.0-1ubuntu2.10\r\n\r\n\r\n\r\n\r\n-- ubuntu-security-announce mailing list ubuntu-security-announce@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-security-announce\r\n\r\n", "modified": "2014-11-24T00:00:00", "published": "2014-11-24T00:00:00", "id": "SECURITYVULNS:DOC:31390", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:31390", "title": "[USN-2412-1] Ruby vulnerability", "type": "securityvulns", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:11:01", "bulletinFamily": "software", "description": "\r\n\r\nAPPLE-SA-2015-09-30-3 OS X El Capitan 10.11\r\n\r\nOS X El Capitan 10.11 is now available and addresses the following:\r\n\r\nAddress Book\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker may be able to inject arbitrary code to\r\nprocesses loading the Address Book framework\r\nDescription: An issue existed in Address Book framework&#39;s handling\r\nof an environment variable. This issue was addressed through improved\r\nenvironment variable handling.\r\nCVE-ID\r\nCVE-2015-5897 : Dan Bastone of Gotham Digital Science\r\n\r\nAirScan\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker with a privileged network position may be able\r\nto extract payload from eSCL packets sent over a secure connection\r\nDescription: An issue existed in the processing of eSCL packets.\r\nThis issue was addressed through improved validation checks.\r\nCVE-ID\r\nCVE-2015-5853 : an anonymous researcher\r\n\r\napache_mod_php\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in PHP\r\nDescription: Multiple vulnerabilities existed in PHP versions prior\r\nto 5.5.27, including one which may have led to remote code execution.\r\nThis issue was addressed by updating PHP to version 5.5.27.\r\nCVE-ID\r\nCVE-2014-9425\r\nCVE-2014-9427\r\nCVE-2014-9652\r\nCVE-2014-9705\r\nCVE-2014-9709\r\nCVE-2015-0231\r\nCVE-2015-0232\r\nCVE-2015-0235\r\nCVE-2015-0273\r\nCVE-2015-1351\r\nCVE-2015-1352\r\nCVE-2015-2301\r\nCVE-2015-2305\r\nCVE-2015-2331\r\nCVE-2015-2348\r\nCVE-2015-2783\r\nCVE-2015-2787\r\nCVE-2015-3329\r\nCVE-2015-3330\r\n\r\nApple Online Store Kit\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application may gain access to a user&#39;s keychain\r\nitems\r\nDescription: An issue existed in validation of access control lists\r\nfor iCloud keychain items. This issue was addressed through improved\r\naccess control list checks.\r\nCVE-ID\r\nCVE-2015-5836 : XiaoFeng Wang of Indiana University, Luyi Xing of\r\nIndiana University, Tongxin Li of Peking University, Tongxin Li of\r\nPeking University, Xiaolong Bai of Tsinghua University\r\n\r\nAppleEvents\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A user connected through screen sharing can send Apple\r\nEvents to a local user&#39;s session\r\nDescription: An issue existed with Apple Event filtering that\r\nallowed some users to send events to other users. This was addressed\r\nby improved Apple Event handling.\r\nCVE-ID\r\nCVE-2015-5849 : Jack Lawrence &#40;@_jackhl&#41;\r\n\r\nAudio\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Playing a malicious audio file may lead to an unexpected\r\napplication termination\r\nDescription: A memory corruption issue existed in the handling of\r\naudio files. This issue issue was addressed through improved memory\r\nhandling.\r\nCVE-ID\r\nCVE-2015-5862 : YoungJin Yoon of Information Security Lab. &#40;Adv.:\r\nProf. Taekyoung Kwon&#41;, Yonsei University, Seoul, Korea\r\n\r\nbash\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in bash\r\nDescription: Multiple vulnerabilities existed in bash versions prior\r\nto 3.2 patch level 57. These issues were addressed by updating bash\r\nversion 3.2 to patch level 57.\r\nCVE-ID\r\nCVE-2014-6277\r\nCVE-2014-7186\r\nCVE-2014-7187\r\n\r\nCertificate Trust Policy\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Update to the certificate trust policy\r\nDescription: The certificate trust policy was updated. The complete\r\nlist of certificates may be viewed at https://support.apple.com/en-\r\nus/HT202858.\r\n\r\nCFNetwork Cookies\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker in a privileged network position can track a\r\nuser&#39;s activity\r\nDescription: A cross-domain cookie issue existed in the handling of\r\ntop level domains. The issue was address through improved\r\nrestrictions of cookie creation.\r\nCVE-ID\r\nCVE-2015-5885 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua\r\nUniversity\r\n\r\nCFNetwork FTPProtocol\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Malicious FTP servers may be able to cause the client to\r\nperform reconnaissance on other hosts\r\nDescription: An issue existed in the handling of FTP packets when\r\nusing the PASV command. This issue was resolved through improved\r\nvalidation.\r\nCVE-ID\r\nCVE-2015-5912 : Amit Klein\r\n\r\nCFNetwork HTTPProtocol\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A maliciously crafted URL may be able to bypass HSTS and\r\nleak sensitive data\r\nDescription: A URL parsing vulnerability existed in HSTS handling.\r\nThis issue was addressed through improved URL parsing.\r\nCVE-ID\r\nCVE-2015-5858 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua\r\nUniversity\r\n\r\nCFNetwork HTTPProtocol\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious website may be able to track users in Safari\r\nprivate browsing mode\r\nDescription: An issue existed in the handling of HSTS state in\r\nSafari private browsing mode. This issue was addressed through\r\nimproved state handling.\r\nCVE-ID\r\nCVE-2015-5860 : Sam Greenhalgh of RadicalResearch Ltd\r\n\r\nCFNetwork Proxies\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Connecting to a malicious web proxy may set malicious\r\ncookies for a website\r\nDescription: An issue existed in the handling of proxy connect\r\nresponses. This issue was addressed by removing the set-cookie header\r\nwhile parsing the connect response.\r\nCVE-ID\r\nCVE-2015-5841 : Xiaofeng Zheng of Blue Lotus Team, Tsinghua\r\nUniversity\r\n\r\nCFNetwork SSL\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker with a privileged network position may intercept\r\nSSL/TLS connections\r\nDescription: A certificate validation issue existed in NSURL when a\r\ncertificate changed. This issue was addressed through improved\r\ncertificate validation.\r\nCVE-ID\r\nCVE-2015-5824 : Timothy J. Wood of The Omni Group\r\n\r\nCFNetwork SSL\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker may be able to decrypt data protected by SSL\r\nDescription: There are known attacks on the confidentiality of RC4.\r\nAn attacker could force the use of RC4, even if the server preferred\r\nbetter ciphers, by blocking TLS 1.0 and higher connections until\r\nCFNetwork tried SSL 3.0, which only allows RC4. This issue was\r\naddressed by removing the fallback to SSL 3.0.\r\n\r\nCoreCrypto\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker may be able to determine a private key\r\nDescription: By observing many signing or decryption attempts, an\r\nattacker may have been able to determine the RSA private key. This\r\nissue was addressed using improved encryption algorithms.\r\n\r\nCoreText\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Processing a maliciously crafted font file may lead to\r\narbitrary code execution\r\nDescription: A memory corruption issue existed in the processing of\r\nfont files. This issue was addressed through improved input\r\nvalidation.\r\nCVE-ID\r\nCVE-2015-5874 : John Villamil &#40;@day6reak&#41;, Yahoo Pentest Team\r\n\r\nDev Tools\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application may be able to execute arbitrary\r\ncode with system privileges\r\nDescription: A memory corruption issue existed in dyld. This was\r\naddressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5876 : beist of grayhash\r\n\r\nDev Tools\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An application may be able to bypass code signing\r\nDescription: An issue existed with validation of the code signature\r\nof executables. This issue was addressed through improved bounds\r\nchecking.\r\nCVE-ID\r\nCVE-2015-5839 : @PanguTeam\r\n\r\nDisk Images\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nsystem privileges\r\nDescription: A memory corruption issue existed in DiskImages. This\r\nissue was addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5847 : Filippo Bigarella, Luca Todesco\r\n\r\ndyld\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An application may be able to bypass code signing\r\nDescription: An issue existed with validation of the code signature\r\nof executables. This issue was addressed through improved bounds\r\nchecking.\r\nCVE-ID\r\nCVE-2015-5839 : TaiG Jailbreak Team\r\n\r\nEFI\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application can prevent some systems from\r\nbooting\r\nDescription: An issue existed with the addresses covered by the\r\nprotected range register. This issue was fixed by changing the\r\nprotected range.\r\nCVE-ID\r\nCVE-2015-5900 : Xeno Kovah &amp; Corey Kallenberg from LegbaCore\r\n\r\nEFI\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious Apple Ethernet Thunderbolt adapter may be able\r\nto affect firmware flashing\r\nDescription: Apple Ethernet Thunderbolt adapters could modify the\r\nhost firmware if connected during an EFI update. This issue was\r\naddressed by not loading option ROMs during updates.\r\nCVE-ID\r\nCVE-2015-5914 : Trammell Hudson of Two Sigma Investments and snare\r\n\r\nFinder\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: The &quot;Secure Empty Trash&quot; feature may not securely delete\r\nfiles placed in the Trash\r\nDescription: An issue existed in guaranteeing secure deletion of\r\nTrash files on some systems, such as those with flash storage. This\r\nissue was addressed by removing the &quot;Secure Empty Trash&quot; option.\r\nCVE-ID\r\nCVE-2015-5901 : Apple\r\n\r\nGame Center\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious Game Center application may be able to access a\r\nplayer&#39;s email address\r\nDescription: An issue existed in Game Center in the handling of a\r\nplayer&#39;s email. This issue was addressed through improved access\r\nrestrictions.\r\nCVE-ID\r\nCVE-2015-5855 : Nasser Alnasser\r\n\r\nHeimdal\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker may be able to replay Kerberos credentials to\r\nthe SMB server\r\nDescription: An authentication issue existed in Kerberos\r\ncredentials. This issue was addressed through additional validation\r\nof credentials using a list of recently seen credentials.\r\nCVE-ID\r\nCVE-2015-5913 : Tarun Chopra of Microsoft Corporation, U.S. and Yu\r\nFan of Microsoft Corporation, China\r\n\r\nICU\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in ICU\r\nDescription: Multiple vulnerabilities existed in ICU versions prior\r\nto 53.1.0. These issues were addressed by updating ICU to version\r\n55.1.\r\nCVE-ID\r\nCVE-2014-8146\r\nCVE-2014-8147\r\nCVE-2015-5922\r\n\r\nInstall Framework Legacy\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to gain root privileges\r\nDescription: A restriction issue existed in the Install private\r\nframework containing a privileged executable. This issue was\r\naddressed by removing the executable.\r\nCVE-ID\r\nCVE-2015-5888 : Apple\r\n\r\nIntel Graphics Driver\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nsystem privileges\r\nDescription: Multiple memory corruption issues existed in the Intel\r\nGraphics Driver. These issues were addressed through improved memory\r\nhandling.\r\nCVE-ID\r\nCVE-2015-5830 : Yuki MIZUNO &#40;@mzyy94&#41;\r\nCVE-2015-5877 : Camillus Gerard Cai\r\n\r\nIOAudioFamily\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to determine kernel memory layout\r\nDescription: An issue existed in IOAudioFamily that led to the\r\ndisclosure of kernel memory content. This issue was addressed by\r\npermuting kernel pointers.\r\nCVE-ID\r\nCVE-2015-5864 : Luca Todesco\r\n\r\nIOGraphics\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nkernel privileges\r\nDescription: Multiple memory corruption issues existed in the\r\nkernel. These issues were addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5871 : Ilja van Sprundel of IOActive\r\nCVE-2015-5872 : Ilja van Sprundel of IOActive\r\nCVE-2015-5873 : Ilja van Sprundel of IOActive\r\nCVE-2015-5890 : Ilja van Sprundel of IOActive\r\n\r\nIOGraphics\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application may be able to determine kernel\r\nmemory layout\r\nDescription: An issue existed in IOGraphics which could have led to\r\nthe disclosure of kernel memory layout. This issue was addressed\r\nthrough improved memory management.\r\nCVE-ID\r\nCVE-2015-5865 : Luca Todesco\r\n\r\nIOHIDFamily\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application may be able to execute arbitrary\r\ncode with system privileges\r\nDescription: Multiple memory corruption issues existed in\r\nIOHIDFamily. These issues were addressed through improved memory\r\nhandling.\r\nCVE-ID\r\nCVE-2015-5866 : Apple\r\nCVE-2015-5867 : moony li of Trend Micro\r\n\r\nIOStorageFamily\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker may be able to read kernel memory\r\nDescription: A memory initialization issue existed in the kernel.\r\nThis issue was addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5863 : Ilja van Sprundel of IOActive\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nkernel privileges\r\nDescription: Multiple memory corruption issues existed in the\r\nKernel. These issues were addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5868 : Cererdlong of Alibaba Mobile Security Team\r\nCVE-2015-5896 : Maxime Villard of m00nbsd\r\nCVE-2015-5903 : CESG\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local process can modify other processes without\r\nentitlement checks\r\nDescription: An issue existed where root processes using the\r\nprocessor_set_tasks API were allowed to retrieve the task ports of\r\nother processes. This issue was addressed through additional\r\nentitlement checks.\r\nCVE-ID\r\nCVE-2015-5882 : Pedro Vilaca, working from original research by\r\nMing-chieh Pan and Sung-ting Tsai; Jonathan Levin\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker may control the value of stack cookies\r\nDescription: Multiple weaknesses existed in the generation of user\r\nspace stack cookies. These issues were addressed through improved\r\ngeneration of stack cookies.\r\nCVE-ID\r\nCVE-2013-3951 : Stefan Esser\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker may be able to launch denial of service attacks\r\non targeted TCP connections without knowing the correct sequence\r\nnumber\r\nDescription: An issue existed in xnu&#39;s validation of TCP packet\r\nheaders. This issue was addressed through improved TCP packet header\r\nvalidation.\r\nCVE-ID\r\nCVE-2015-5879 : Jonathan Looney\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker in a local LAN segment may disable IPv6 routing\r\nDescription: An insufficient validation issue existed in the\r\nhandling of IPv6 router advertisements that allowed an attacker to\r\nset the hop limit to an arbitrary value. This issue was addressed by\r\nenforcing a minimum hop limit.\r\nCVE-ID\r\nCVE-2015-5869 : Dennis Spindel Ljungmark\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to determine kernel memory layout\r\nDescription: An issue existed that led to the disclosure of kernel\r\nmemory layout. This was addressed through improved initialization of\r\nkernel memory structures.\r\nCVE-ID\r\nCVE-2015-5842 : beist of grayhash\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to determine kernel memory layout\r\nDescription: An issue existed in debugging interfaces that led to\r\nthe disclosure of memory content. This issue was addressed by\r\nsanitizing output from debugging interfaces.\r\nCVE-ID\r\nCVE-2015-5870 : Apple\r\n\r\nKernel\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to cause a system denial of service\r\nDescription: A state management issue existed in debugging\r\nfunctionality. This issue was addressed through improved validation.\r\nCVE-ID\r\nCVE-2015-5902 : Sergi Alvarez &#40;pancake&#41; of NowSecure Research Team\r\n\r\nlibc\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nkernel privileges\r\nDescription: A memory corruption issue existed in the kernel. This\r\nissue was addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2014-8611 : Adrian Chadd and Alfred Perlstein of Norse\r\nCorporation\r\n\r\nlibpthread\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nkernel privileges\r\nDescription: A memory corruption issue existed in the kernel. This\r\nissue was addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5899 : Lufeng Li of Qihoo 360 Vulcan Team\r\n\r\nlibxpc\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Many SSH connections could cause a denial of service\r\nDescription: launchd had no limit on the number of processes that\r\ncould be started by a network connection. This issue was addressed by\r\nlimiting the number of SSH processes to 40.\r\nCVE-ID\r\nCVE-2015-5881 : Apple\r\n\r\nLogin Window\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: The screen lock may not engage after the specified time\r\nperiod\r\nDescription: An issue existed with captured display locking. The\r\nissue was addressed through improved lock handling.\r\nCVE-ID\r\nCVE-2015-5833 : Carlos Moreira, Rainer Dorau of rainer dorau\r\ninformationsdesign, Chris Nehren, Kai Takac, Hans Douma, Toni\r\nVaahtera, and an anonymous researcher\r\n\r\nlukemftpd\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A remote attacker may be able to deny service to the FTP\r\nserver\r\nDescription: A glob-processing issue existed in tnftpd. This issue\r\nwas addressed through improved glob validation.\r\nCVE-ID\r\nCVE-2015-5917 : Maksymilian Arciemowicz of cxsecurity.com\r\n\r\nMail\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Printing an email may leak sensitive user information\r\nDescription: An issue existed in Mail which bypassed user\r\npreferences when printing an email. This issue was addressed through\r\nimproved user preference enforcement.\r\nCVE-ID\r\nCVE-2015-5881 : Owen DeLong of Akamai Technologies, Noritaka Kamiya,\r\nDennis Klein from Eschenburg, Germany, Jeff Hammett of Systim\r\nTechnology Partners\r\n\r\nMail\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: An attacker in a privileged network position may be able to\r\nintercept attachments of S/MIME-encrypted e-mail sent via Mail Drop\r\nDescription: An issue existed in handling encryption parameters for\r\nlarge email attachments sent via Mail Drop. The issue is addressed by\r\nno longer offering Mail Drop when sending an encrypted e-mail.\r\nCVE-ID\r\nCVE-2015-5884 : John McCombs of Integrated Mapping Ltd\r\n\r\nMultipeer Connectivity\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker may be able to observe unprotected\r\nmultipeer data\r\nDescription: An issue existed in convenience initializer handling in\r\nwhich encryption could be actively downgraded to a non-encrypted\r\nsession. This issue was addressed by changing the convenience\r\ninitializer to require encryption.\r\nCVE-ID\r\nCVE-2015-5851 : Alban Diquet &#40;@nabla_c0d3&#41; of Data Theorem\r\n\r\nNetworkExtension\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A malicious application may be able to determine kernel\r\nmemory layout\r\nDescription: An uninitialized memory issue in the kernel led to the\r\ndisclosure of kernel memory content. This issue was addressed through\r\nimproved memory initialization.\r\nCVE-ID\r\nCVE-2015-5831 : Maxime Villard of m00nbsd\r\n\r\nNotes\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to leak sensitive user information\r\nDescription: An issue existed in parsing links in the Notes\r\napplication. This issue was addressed through improved input\r\nvalidation.\r\nCVE-ID\r\nCVE-2015-5878 : Craig Young of Tripwire VERT, an anonymous researcher\r\n\r\nNotes\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to leak sensitive user information\r\nDescription: A cross-site scripting issue existed in parsing text by\r\nthe Notes application. This issue was addressed through improved\r\ninput validation.\r\nCVE-ID\r\nCVE-2015-5875 : xisigr of Tencent&#39;s Xuanwu LAB &#40;www.tencent.com&#41;\r\n\r\nOpenSSH\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in OpenSSH\r\nDescription: Multiple vulnerabilities existed in OpenSSH versions\r\nprior to 6.9. These issues were addressed by updating OpenSSH to\r\nversion 6.9.\r\nCVE-ID\r\nCVE-2014-2532\r\n\r\nOpenSSL\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in OpenSSL\r\nDescription: Multiple vulnerabilities existed in OpenSSL versions\r\nprior to 0.9.8zg. These were addressed by updating OpenSSL to version\r\n0.9.8zg.\r\nCVE-ID\r\nCVE-2015-0286\r\nCVE-2015-0287\r\n\r\nprocmail\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in procmail\r\nDescription: Multiple vulnerabilities existed in procmail versions\r\nprior to 3.22. These issues were addressed by removing procmail.\r\nCVE-ID\r\nCVE-2014-3618\r\n\r\nremote_cmds\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with root\r\nprivileges\r\nDescription: An issue existed in the usage of environment variables\r\nby the rsh binary. This issue was addressed by dropping setuid\r\nprivileges from the rsh binary.\r\nCVE-ID\r\nCVE-2015-5889 : Philip Pettersson\r\n\r\nremovefile\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Processing malicious data may lead to unexpected application\r\ntermination\r\nDescription: An overflow fault existed in the checkint division\r\nroutines. This issue was addressed with improved division routines.\r\nCVE-ID\r\nCVE-2015-5840 : an anonymous researcher\r\n\r\nRuby\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in Ruby\r\nDescription: Multiple vulnerabilities existed in Ruby versions prior\r\nto 2.0.0p645. These were addressed by updating Ruby to version\r\n2.0.0p645.\r\nCVE-ID\r\nCVE-2014-8080\r\nCVE-2014-8090\r\nCVE-2015-1855\r\n\r\nSecurity\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: The lock state of the keychain may be incorrectly displayed\r\nto the user\r\nDescription: A state management issue existed in the way keychain\r\nlock status was tracked. This issue was addressed through improved\r\nstate management.\r\nCVE-ID\r\nCVE-2015-5915 : Peter Walz of University of Minnesota, David Ephron,\r\nEric E. Lawrence, Apple\r\n\r\nSecurity\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A trust evaluation configured to require revocation checking\r\nmay succeed even if revocation checking fails\r\nDescription: The kSecRevocationRequirePositiveResponse flag was\r\nspecified but not implemented. This issue was addressed by\r\nimplementing the flag.\r\nCVE-ID\r\nCVE-2015-5894 : Hannes Oud of kWallet GmbH\r\n\r\nSecurity\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A remote server may prompt for a certificate before\r\nidentifying itself\r\nDescription: Secure Transport accepted the CertificateRequest\r\nmessage before the ServerKeyExchange message. This issue was\r\naddressed by requiring the ServerKeyExchange first.\r\nCVE-ID\r\nCVE-2015-5887 : Benjamin Beurdouche, Karthikeyan Bhargavan, Antoine\r\nDelignat-Lavaud, Alfredo Pironti, and Jean Karim Zinzindohoue of\r\nINRIA Paris-Rocquencourt, and Cedric Fournet and Markulf Kohlweiss of\r\nMicrosoft Research, Pierre-Yves Strub of IMDEA Software Institute\r\n\r\nSMB\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to execute arbitrary code with\r\nkernel privileges\r\nDescription: A memory corruption issue existed in the kernel. This\r\nissue was addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5891 : Ilja van Sprundel of IOActive\r\n\r\nSMB\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local user may be able to determine kernel memory layout\r\nDescription: An issue existed in SMBClient that led to the\r\ndisclosure of kernel memory content. This issue was addressed through\r\nimproved bounds checking.\r\nCVE-ID\r\nCVE-2015-5893 : Ilja van Sprundel of IOActive\r\n\r\nSQLite\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Multiple vulnerabilities in SQLite v3.8.5\r\nDescription: Multiple vulnerabilities existed in SQLite v3.8.5.\r\nThese issues were addressed by updating SQLite to version 3.8.10.2.\r\nCVE-ID\r\nCVE-2015-3414\r\nCVE-2015-3415\r\nCVE-2015-3416\r\n\r\nTelephony\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker can place phone calls without the user&#39;s\r\nknowledge when using Continuity\r\nDescription: An issue existed in the authorization checks for\r\nplacing phone calls. This issue was addressed through improved\r\nauthorization checks.\r\nCVE-ID\r\nCVE-2015-3785 : Dan Bastone of Gotham Digital Science\r\n\r\nTerminal\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Maliciously crafted text could mislead the user in Terminal\r\nDescription: Terminal did not handle bidirectional override\r\ncharacters in the same way when displaying text and when selecting\r\ntext. This issue was addressed by suppressing bidirectional override\r\ncharacters in Terminal.\r\nCVE-ID\r\nCVE-2015-5883 : an anonymous researcher\r\n\r\ntidy\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: Visiting a maliciously crafted website may lead to arbitrary\r\ncode execution\r\nDescription: Multiple memory corruption issues existed in tidy.\r\nThese issues were addressed through improved memory handling.\r\nCVE-ID\r\nCVE-2015-5522 : Fernando Munoz of NULLGroup.com\r\nCVE-2015-5523 : Fernando Munoz of NULLGroup.com\r\n\r\nTime Machine\r\nAvailable for: Mac OS X v10.6.8 and later\r\nImpact: A local attacker may gain access to keychain items\r\nDescription: An issue existed in backups by the Time Machine\r\nframework. This issue was addressed through improved coverage of Time\r\nMachine backups.\r\nCVE-ID\r\nCVE-2015-5854 : Jonas Magazinius of Assured AB\r\n\r\nNote: OS X El Capitan 10.11 includes the security content of\r\nSafari 9: https://support.apple.com/kb/HT205265.\r\n\r\nOS X El Capitan 10.11 may be obtained from the Mac App Store:\r\nhttp://www.apple.com/support/downloads/\r\n\r\nInformation will also be posted to the Apple Security Updates\r\nweb site: https://support.apple.com/kb/HT201222\r\n\r\nThis message is signed with Apple&#39;s Product Security PGP key,\r\nand details are available at:\r\nhttps://www.apple.com/support/security/pgp/\r\n\r\n", "modified": "2015-10-05T00:00:00", "published": "2015-10-05T00:00:00", "id": "SECURITYVULNS:DOC:32522", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:32522", "title": "APPLE-SA-2015-09-30-3 OS X El Capitan 10.11", "type": "securityvulns", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-08-31T11:10:02", "bulletinFamily": "software", "description": "Code execution, information disclosure, restrictions bypass, multiple memory corruptions, multiple libraries vulnerabilities.", "modified": "2015-10-25T00:00:00", "published": "2015-10-25T00:00:00", "id": "SECURITYVULNS:VULN:14702", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:14702", "title": "Apple Mac OS X / Mac EFI / OS X Server multiple security vulnerabilities", "type": "securityvulns", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "amazon": [{"lastseen": "2019-05-29T17:22:26", "bulletinFamily": "unix", "description": "**Issue Overview:**\n\nThe upstream patch for [CVE-2014-8080 __](<https://access.redhat.com/security/cve/CVE-2014-8080>) introduced checks against the REXML.entity_expansion_text_limit, but did not add restrictions to limit the number of expansions performed, i.e. checks against the REXML::Document.entity_expansion_limit. As a consequence, even with the patch applied, a small XML document could cause REXML to use an excessive amount of CPU time. High memory usage can be achieved using larger inputs.\n\n \n**Affected Packages:** \n\n\nruby21\n\n \n**Issue Correction:** \nRun _yum update ruby21_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n rubygem21-psych-2.0.5-1.15.amzn1.i686 \n ruby21-2.1.5-1.15.amzn1.i686 \n ruby21-devel-2.1.5-1.15.amzn1.i686 \n rubygem21-bigdecimal-1.2.4-1.15.amzn1.i686 \n rubygem21-io-console-0.4.2-1.15.amzn1.i686 \n ruby21-debuginfo-2.1.5-1.15.amzn1.i686 \n ruby21-libs-2.1.5-1.15.amzn1.i686 \n \n noarch: \n ruby21-irb-2.1.5-1.15.amzn1.noarch \n rubygems21-devel-2.2.2-1.15.amzn1.noarch \n ruby21-doc-2.1.5-1.15.amzn1.noarch \n rubygems21-2.2.2-1.15.amzn1.noarch \n \n src: \n ruby21-2.1.5-1.15.amzn1.src \n \n x86_64: \n rubygem21-bigdecimal-1.2.4-1.15.amzn1.x86_64 \n rubygem21-psych-2.0.5-1.15.amzn1.x86_64 \n rubygem21-io-console-0.4.2-1.15.amzn1.x86_64 \n ruby21-debuginfo-2.1.5-1.15.amzn1.x86_64 \n ruby21-2.1.5-1.15.amzn1.x86_64 \n ruby21-devel-2.1.5-1.15.amzn1.x86_64 \n ruby21-libs-2.1.5-1.15.amzn1.x86_64 \n \n \n", "modified": "2014-11-16T13:33:00", "published": "2014-11-16T13:33:00", "id": "ALAS-2014-449", "href": "https://alas.aws.amazon.com/ALAS-2014-449.html", "title": "Medium: ruby21", "type": "amazon", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T17:22:44", "bulletinFamily": "unix", "description": "**Issue Overview:**\n\nThe upstream patch for [CVE-2014-8080 __](<https://access.redhat.com/security/cve/CVE-2014-8080>) introduced checks against the REXML.entity_expansion_text_limit, but did not add restrictions to limit the number of expansions performed, i.e. checks against the REXML::Document.entity_expansion_limit. As a consequence, even with the patch applied, a small XML document could cause REXML to use an excessive amount of CPU time. High memory usage can be achieved using larger inputs.\n\n \n**Affected Packages:** \n\n\nruby20\n\n \n**Issue Correction:** \nRun _yum update ruby20_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n ruby20-libs-2.0.0.598-1.20.amzn1.i686 \n rubygem20-io-console-0.4.2-1.20.amzn1.i686 \n ruby20-2.0.0.598-1.20.amzn1.i686 \n rubygem20-psych-2.0.0-1.20.amzn1.i686 \n ruby20-devel-2.0.0.598-1.20.amzn1.i686 \n rubygem20-bigdecimal-1.2.0-1.20.amzn1.i686 \n ruby20-debuginfo-2.0.0.598-1.20.amzn1.i686 \n \n noarch: \n rubygems20-2.0.14-1.20.amzn1.noarch \n ruby20-doc-2.0.0.598-1.20.amzn1.noarch \n ruby20-irb-2.0.0.598-1.20.amzn1.noarch \n rubygems20-devel-2.0.14-1.20.amzn1.noarch \n \n src: \n ruby20-2.0.0.598-1.20.amzn1.src \n \n x86_64: \n rubygem20-bigdecimal-1.2.0-1.20.amzn1.x86_64 \n ruby20-libs-2.0.0.598-1.20.amzn1.x86_64 \n rubygem20-psych-2.0.0-1.20.amzn1.x86_64 \n ruby20-devel-2.0.0.598-1.20.amzn1.x86_64 \n ruby20-2.0.0.598-1.20.amzn1.x86_64 \n ruby20-debuginfo-2.0.0.598-1.20.amzn1.x86_64 \n rubygem20-io-console-0.4.2-1.20.amzn1.x86_64 \n \n \n", "modified": "2014-11-16T13:32:00", "published": "2014-11-16T13:32:00", "id": "ALAS-2014-448", "href": "https://alas.aws.amazon.com/ALAS-2014-448.html", "title": "Medium: ruby20", "type": "amazon", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T17:22:54", "bulletinFamily": "unix", "description": "**Issue Overview:**\n\nThe upstream patch for [CVE-2014-8080 __](<https://access.redhat.com/security/cve/CVE-2014-8080>) introduced checks against the REXML.entity_expansion_text_limit, but did not add restrictions to limit the number of expansions performed, i.e. checks against the REXML::Document.entity_expansion_limit. As a consequence, even with the patch applied, a small XML document could cause REXML to use an excessive amount of CPU time. High memory usage can be achieved using larger inputs.\n\n \n**Affected Packages:** \n\n\nruby19\n\n \n**Issue Correction:** \nRun _yum update ruby19_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n ruby19-debuginfo-1.9.3.551-32.64.amzn1.i686 \n rubygem19-json-1.5.5-32.64.amzn1.i686 \n rubygem19-bigdecimal-1.1.0-32.64.amzn1.i686 \n ruby19-doc-1.9.3.551-32.64.amzn1.i686 \n rubygem19-io-console-0.3-32.64.amzn1.i686 \n ruby19-libs-1.9.3.551-32.64.amzn1.i686 \n ruby19-1.9.3.551-32.64.amzn1.i686 \n ruby19-devel-1.9.3.551-32.64.amzn1.i686 \n \n noarch: \n rubygems19-1.8.23.2-32.64.amzn1.noarch \n rubygem19-rdoc-3.9.5-32.64.amzn1.noarch \n rubygem19-minitest-2.5.1-32.64.amzn1.noarch \n rubygems19-devel-1.8.23.2-32.64.amzn1.noarch \n rubygem19-rake-0.9.2.2-32.64.amzn1.noarch \n ruby19-irb-1.9.3.551-32.64.amzn1.noarch \n \n src: \n ruby19-1.9.3.551-32.64.amzn1.src \n \n x86_64: \n ruby19-debuginfo-1.9.3.551-32.64.amzn1.x86_64 \n rubygem19-json-1.5.5-32.64.amzn1.x86_64 \n rubygem19-io-console-0.3-32.64.amzn1.x86_64 \n ruby19-libs-1.9.3.551-32.64.amzn1.x86_64 \n ruby19-doc-1.9.3.551-32.64.amzn1.x86_64 \n ruby19-devel-1.9.3.551-32.64.amzn1.x86_64 \n rubygem19-bigdecimal-1.1.0-32.64.amzn1.x86_64 \n ruby19-1.9.3.551-32.64.amzn1.x86_64 \n \n \n", "modified": "2014-11-16T13:32:00", "published": "2014-11-16T13:32:00", "id": "ALAS-2014-447", "href": "https://alas.aws.amazon.com/ALAS-2014-447.html", "title": "Medium: ruby19", "type": "amazon", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T17:22:35", "bulletinFamily": "unix", "description": "**Issue Overview:**\n\nThe REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.\n\n \n**Affected Packages:** \n\n\nruby21\n\n \n**Issue Correction:** \nRun _yum update ruby21_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n ruby21-libs-2.1.4-1.14.amzn1.i686 \n rubygem21-bigdecimal-1.2.4-1.14.amzn1.i686 \n ruby21-debuginfo-2.1.4-1.14.amzn1.i686 \n rubygem21-io-console-0.4.2-1.14.amzn1.i686 \n rubygem21-psych-2.0.5-1.14.amzn1.i686 \n ruby21-2.1.4-1.14.amzn1.i686 \n ruby21-devel-2.1.4-1.14.amzn1.i686 \n \n noarch: \n rubygems21-2.2.2-1.14.amzn1.noarch \n rubygems21-devel-2.2.2-1.14.amzn1.noarch \n ruby21-irb-2.1.4-1.14.amzn1.noarch \n ruby21-doc-2.1.4-1.14.amzn1.noarch \n \n src: \n ruby21-2.1.4-1.14.amzn1.src \n \n x86_64: \n ruby21-devel-2.1.4-1.14.amzn1.x86_64 \n ruby21-2.1.4-1.14.amzn1.x86_64 \n rubygem21-bigdecimal-1.2.4-1.14.amzn1.x86_64 \n rubygem21-io-console-0.4.2-1.14.amzn1.x86_64 \n rubygem21-psych-2.0.5-1.14.amzn1.x86_64 \n ruby21-libs-2.1.4-1.14.amzn1.x86_64 \n ruby21-debuginfo-2.1.4-1.14.amzn1.x86_64 \n \n \n", "modified": "2014-11-05T14:38:00", "published": "2014-11-05T14:38:00", "id": "ALAS-2014-439", "href": "https://alas.aws.amazon.com/ALAS-2014-439.html", "title": "Medium: ruby21", "type": "amazon", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T17:22:52", "bulletinFamily": "unix", "description": "**Issue Overview:**\n\nThe REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.\n\n \n**Affected Packages:** \n\n\nruby20\n\n \n**Issue Correction:** \nRun _yum update ruby20_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n ruby20-debuginfo-2.0.0.594-1.19.amzn1.i686 \n ruby20-2.0.0.594-1.19.amzn1.i686 \n ruby20-devel-2.0.0.594-1.19.amzn1.i686 \n rubygem20-bigdecimal-1.2.0-1.19.amzn1.i686 \n rubygem20-psych-2.0.0-1.19.amzn1.i686 \n ruby20-libs-2.0.0.594-1.19.amzn1.i686 \n rubygem20-io-console-0.4.2-1.19.amzn1.i686 \n \n noarch: \n rubygems20-2.0.14-1.19.amzn1.noarch \n ruby20-doc-2.0.0.594-1.19.amzn1.noarch \n rubygems20-devel-2.0.14-1.19.amzn1.noarch \n ruby20-irb-2.0.0.594-1.19.amzn1.noarch \n \n src: \n ruby20-2.0.0.594-1.19.amzn1.src \n \n x86_64: \n rubygem20-psych-2.0.0-1.19.amzn1.x86_64 \n ruby20-debuginfo-2.0.0.594-1.19.amzn1.x86_64 \n ruby20-libs-2.0.0.594-1.19.amzn1.x86_64 \n ruby20-devel-2.0.0.594-1.19.amzn1.x86_64 \n ruby20-2.0.0.594-1.19.amzn1.x86_64 \n rubygem20-io-console-0.4.2-1.19.amzn1.x86_64 \n rubygem20-bigdecimal-1.2.0-1.19.amzn1.x86_64 \n \n \n", "modified": "2014-11-05T14:40:00", "published": "2014-11-05T14:40:00", "id": "ALAS-2014-441", "href": "https://alas.aws.amazon.com/ALAS-2014-441.html", "title": "Medium: ruby20", "type": "amazon", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "ubuntu": [{"lastseen": "2020-07-02T11:44:51", "bulletinFamily": "unix", "description": "Will Wood discovered that Ruby incorrectly handled the encodes() function. \nAn attacker could possibly use this issue to cause Ruby to crash, resulting \nin a denial of service, or possibly execute arbitrary code. The default \ncompiler options for affected releases should reduce the vulnerability to a \ndenial of service. (CVE-2014-4975)\n\nWillis Vandevanter discovered that Ruby incorrectly handled XML entity \nexpansion. An attacker could use this flaw to cause Ruby to consume large \namounts of resources, resulting in a denial of service. (CVE-2014-8080)", "modified": "2014-11-04T00:00:00", "published": "2014-11-04T00:00:00", "id": "USN-2397-1", "href": "https://ubuntu.com/security/notices/USN-2397-1", "title": "Ruby vulnerabilities", "type": "ubuntu", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2020-07-02T11:36:35", "bulletinFamily": "unix", "description": "Tomas Hoger discovered that Ruby incorrectly handled XML entity expansion. \nAn attacker could use this flaw to cause Ruby to consume large amounts of \nresources, resulting in a denial of service.", "modified": "2014-11-20T00:00:00", "published": "2014-11-20T00:00:00", "id": "USN-2412-1", "href": "https://ubuntu.com/security/notices/USN-2412-1", "title": "Ruby vulnerability", "type": "ubuntu", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "archlinux": [{"lastseen": "2016-09-02T18:44:46", "bulletinFamily": "unix", "description": "CPU exhaustion can occur as a result of recursive expansion with an\nempty string. When reading text nodes from an XML document, the REXML\nparser can be coerced into allocating extremely large string objects\nwhich can consume all of the memory on a machine, causing a denial of\nservice.", "modified": "2014-11-17T00:00:00", "published": "2014-11-17T00:00:00", "href": "https://lists.archlinux.org/pipermail/arch-security/2014-November/000141.html", "id": "ASA-201411-16", "title": "ruby: denial of service", "type": "archlinux", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:10", "bulletinFamily": "unix", "description": "### Background\n\nRuby is an object-oriented scripting language.\n\n### Description\n\nMultiple vulnerabilities have been discovered in Ruby. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA context-dependent attacker could possibly execute arbitrary code with the privileges of the process, cause a Denial of Service condition, or bypass security restrictions. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll Ruby 1.9 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=dev-lang/ruby-1.9.3_p551\"\n \n\nAll Ruby 2.0 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=dev-lang/ruby-2.0.0_p598\"", "modified": "2014-12-13T00:00:00", "published": "2014-12-13T00:00:00", "id": "GLSA-201412-27", "href": "https://security.gentoo.org/glsa/201412-27", "type": "gentoo", "title": "Ruby: Denial of Service", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}], "suse": [{"lastseen": "2017-04-28T17:19:07", "bulletinFamily": "unix", "description": "This ruby2.1 update to version 2.1.9 fixes the following issues:\n\n Security issues fixed:\n - CVE-2016-2339: heap overflow vulnerability in the\n Fiddle::Function.new&quot;initialize&quot; (bsc#1018808)\n - CVE-2015-7551: Unsafe tainted string usage in Fiddle and DL (bsc#959495)\n - CVE-2015-3900: hostname validation does not work when fetching gems or\n making API requests (bsc#936032)\n - CVE-2015-1855: Ruby'a OpenSSL extension suffers a vulnerability through\n overly permissive matching of hostnames (bsc#926974)\n - CVE-2014-4975: off-by-one stack-based buffer overflow in the encodes()\n function (bsc#887877)\n\n Bugfixes:\n - SUSEconnect doesn't handle domain wildcards in no_proxy environment\n variable properly (bsc#1014863)\n - Segmentation fault after pack &amp; ioctl &amp; unpack (bsc#909695)\n - Ruby:HTTP Header injection in 'net/http' (bsc#986630)\n\n ChangeLog:\n - <a rel=\"nofollow\" href=\"http://svn.ruby-lang.org/repos/ruby/tags/v2_1_9/ChangeLog\">http://svn.ruby-lang.org/repos/ruby/tags/v2_1_9/ChangeLog</a>\n\n This update was imported from the SUSE:SLE-12:Update update project.\n\n", "modified": "2017-04-28T18:11:28", "published": "2017-04-28T18:11:28", "href": "http://lists.opensuse.org/opensuse-security-announce/2017-04/msg00034.html", "id": "OPENSUSE-SU-2017:1128-1", "title": "Security update for ruby2.1 (important)", "type": "suse", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2017-04-20T11:18:41", "bulletinFamily": "unix", "description": "This ruby2.1 update to version 2.1.9 fixes the following issues:\n\n Security issues fixed:\n - CVE-2016-2339: heap overflow vulnerability in the\n Fiddle::Function.new&quot;initialize&quot; (bsc#1018808)\n - CVE-2015-7551: Unsafe tainted string usage in Fiddle and DL (bsc#959495)\n - CVE-2015-3900: hostname validation does not work when fetching gems or\n making API requests (bsc#936032)\n - CVE-2015-1855: Ruby'a OpenSSL extension suffers a vulnerability through\n overly permissive matching of hostnames (bsc#926974)\n - CVE-2014-4975: off-by-one stack-based buffer overflow in the encodes()\n function (bsc#887877)\n\n Bugfixes:\n - SUSEconnect doesn't handle domain wildcards in no_proxy environment\n variable properly (bsc#1014863)\n - Segmentation fault after pack &amp; ioctl &amp; unpack (bsc#909695)\n - Ruby:HTTP Header injection in 'net/http' (bsc#986630)\n\n ChangeLog:\n - <a rel=\"nofollow\" href=\"http://svn.ruby-lang.org/repos/ruby/tags/v2_1_9/ChangeLog\">http://svn.ruby-lang.org/repos/ruby/tags/v2_1_9/ChangeLog</a>\n\n", "modified": "2017-04-20T12:08:57", "published": "2017-04-20T12:08:57", "id": "SUSE-SU-2017:1067-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2017-04/msg00024.html", "title": "Security update for ruby2.1 (important)", "type": "suse", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}