6 matches found
Security update for rubygem-puma
This update for rubygem-puma fixes the following issues: Update to version 5.6.9. CVE-2024-45614: improper header normalization allows for clients to clobber proxy set headers, which can lead to information leaks bsc1230848, fixed in an earlier update. CVE-2024-21647: unbounded resource consumpti...
Security update for rubygem-puma
This update for rubygem-puma fixes the following issues: Update to version 5.6.9. CVE-2024-45614: improper header normalization allows for clients to clobber proxy set headers, which can lead to information leaks bsc1230848, fixed in an earlier update. CVE-2024-21647: unbounded resource consumpti...
SUSE-SU-2022:1515-1 Security update for rubygem-puma
This update for rubygem-puma fixes the following issues: rubygem-puma was updated to version 4.3.11: CVE-2021-29509: Adjusted an incomplete fix for allows Denial of Service DoS bsc1188527 CVE-2021-41136: Fixed request smuggling if HTTP header value contains the LF character bsc1191681...
Security update for rmt-server (important)
openSUSE Security Update: Security update for rmt-server Announcement ID: openSUSE-SU-2020:2000-1 Rating: important References: 1172177 1172182 1172184 1172186 1173351 Cross-References: CVE-2019-16770 CVE-2019-5418 CVE-2019-5419 CVE-2019-5420 CVE-2020-11076 CVE-2020-11077 CVE-2020-15169...
openSUSE Security Update : rmt-server (openSUSE-2020-1993)
This update for rmt-server fixes the following issues : Update to version 2.6.5 : - Solved potential bug of SCC repository URLs changing over time. RMT now self heals by removing the previous invalid repository and creating the correct one. - Add web server settings to /etc/rmt.conf: Now it's...
OPENSUSE-SU-2020:1001-1 Security update for rubygem-puma
This update for rubygem-puma to version 4.3.5 fixes the following issues: - CVE-2020-11077: Fixed a HTTP smuggling issue related to proxy usage bsc1172175. - CVE-2020-11076: Fixed a HTTP smuggling issue when using an invalid transfer-encoding header bsc1172176. - Disabled TLSv1.0 and TLSv1.1...