openSUSE Security Update : ruby (openSUSE-SU-2013:0278-1)

This update updates the RubyOnRails 2.3 stack to 2.3.16, also this update updates the RubyOnRails 3.2 stack to 3.2.11. Security and bugfixes were done, foremost: CVE-2013-0333: A JSON sql/code injection problem was fixed. CVE-2012-5664: A SQL Injection Vulnerability in Active Record was fixed...

SuSE Update for ruby openSUSE-SU-2013:0278-1 (ruby)

Check for the Version of ruby OpenVAS Vulnerability Test $Id: gbsuse201302781.nasl 8542 2018-01-26 06:57:28Z teissa $ SuSE Update for ruby openSUSE-SU-2013:0278-1 ruby Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is fre...

openSUSE: Security Advisory for ruby (openSUSE-SU-2013:0280-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ruby on rails to 2.3.16 (important)

This update updates the RubyOnRails 2.3 stack to 2.3.16, also this update updates the RubyOnRails 3.2 stack to 3.2.11. Security and bugfixes were done, foremost: CVE-2013-0333: A JSON sql/code injection problem was fixed. CVE-2012-5664: A SQL Injection Vulnerability in Active Record was fixed...

[SECURITY] [DSA 2597-1] rails security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2597-1 [email protected] http://www.debian.org/security/ Nico Golde January 04, 2013 http://www.debian.org/security/faq -...

Ruby on Rails Authlogic gem SQL注入漏洞

CVE ID: CVE-2012-5664 Ruby on Rails是一款Web应用程序框架，构建在Ruby语言之上 AuthLogic gem实现存在一个SQL注入漏洞，如果Ruby on Rails应用使用AuthLogic gem进行验证，并且攻击者在能访问Rails应用的私钥的情况下，可绕过安全限制进行未授权访问 0 Ruby on Rails 厂商补丁： Ruby on Rails ---------- 目前没有详细解决方案提供： http://rubygems.org/gems/authlogic...

CVE-2012-5664

...

PT-2012-6068 · Suse · Rubygem-Actionmailer +52

Уязвимость CVE-2012-5664...