logo
DATABASE RESOURCES PRICING ABOUT US

(RHSA-2019:1149) Important: rh-ror42-rubygem-actionpack security update

Description

Ruby on Rails is a model-view-controller (MVC) framework for web application development. Action Pack implements the controller and the view components. Security Fix(es): * rubygem-actionpack: render file directory traversal in Action View (CVE-2019-5418) * rubygem-actionpack: denial of service vulnerability in Action View (CVE-2019-5419) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.


Affected Package


OS OS Version Package Name Package Version
RedHat 7 rh-ror42-rubygem-actionpack 4.2.6-5.el7
RedHat 6 rh-ror42-rubygem-actionpack 4.2.6-5.el6
RedHat 6 rh-ror42-rubygem-actionpack-doc 4.2.6-5.el6
RedHat 6 rh-ror42-rubygem-actionpack 4.2.6-5.el6
RedHat 7 rh-ror42-rubygem-actionpack-doc 4.2.6-5.el7
RedHat 7 rh-ror42-rubygem-actionpack 4.2.6-5.el7

Related