Fedora Update for rubygem-activejob FEDORA-2019-d0af506401

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora Update for rubygem-activestorage FEDORA-2019-307ebe924c

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora Update for rubygem-loofah FEDORA-2018-d5fcbb9ca6

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora Update for rubygem-rack FEDORA-2018-e8ff8b7f8e

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Cross-Site Request Forgery (CSRF)

OpenShift Enterprise is a cloud computing Platform-as-a-Service PaaS solution from Red Hat, and is designed for on-premise or private cloud deployments. A flaw was found in the handling of paths provided to ruby193-rubygem-rack. A remote attacker could use this flaw to conduct a directory travers...

SUSE-SU-2019:0915-1 Security update for rubygem-actionpack-4_2

This update for rubygem-actionpack-42 fixes the following issues: Security issues fixed: - CVE-2019-5418: Fixed a file content disclosure vulnerability in Action View which could be exploited via specially crafted accept headers in combination with calls to render file bsc1129272. - CVE-2019-5419...

openSUSE Security Update : rubygem-activejob-5_1 (openSUSE-2019-982)

This update for rubygem-activejob-51 fixes the following issues : Security issue fixed : - CVE-2018-16476: Fixed broken access control vulnerability bsc1117632. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptiv...

openSUSE Security Update : rubygem-sprockets (openSUSE-2019-542)

This update for rubygem-sprockets fixes the following issues : The following security vulnerability was addressed : - CVE-2018-3760: Fixed a path traversal issue in sprockets/server.rb:forbiddenrequest?, which allowed remote attackers to read arbitrary files bsc1098369 This update was imported fr...

openSUSE Security Update : rubygem-loofah (openSUSE-2019-963)

This update for rubygem-loofah fixes the following issues : Security issue fixed : - CVE-2018-16468: Fixed XXS by removing the svg animate attribute from from the allowlist bsc1113969. This update was imported from the SUSE:SLE-15:Update update project. %NASLMINLEVEL 70300 C Tenable Network...

Photon OS 1.0: Rubygem PHSA-2019-1.0-0205

An update of the rubygem package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-1.0-0205. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 2.0: Rubygem PHSA-2019-2.0-0130

An update of the rubygem package has been released. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0130. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

[SECURITY] Fedora 29 Update: rubygem-activejob-5.2.1-2.fc29

Declare job classes that can be run by a variety of queueing backends...

[SECURITY] Fedora 29 Update: rubygem-activestorage-5.2.1-3.fc29

Attach cloud and local files in Rails applications...

[SECURITY] Fedora 28 Update: rubygem-activejob-5.1.5-2.fc28

Declare job classes that can be run by a variety of queueing backends...

Fedora Update for rubygem-activejob FEDORA-2019-31e6f6e545

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Fedora 28 : rubygem-activejob (2019-31e6f6e545)

Fix information exposure through deserialization using GlobalId CVE-2018-16476. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without...

CVE-2013-2516

Vulnerability in FileUtils v0.7, Ruby Gem Fileutils = v0.7 Command Injection vulnerability in user supplied url variable that is passed to the shell...

SUSE-SU-2019:0394-1 Security update for rubygem-loofah

This update for rubygem-loofah fixes the following issues: Security issues fixed: - CVE-2018-16468: Fixed XXS by removing the svg animate attribute from from the allowlist bsc1113969. - CVE-2018-8048: Fixed XSS vulnerability due to unescaped characters by libcxml2 bsc1085967...

SUSE-SU-2019:0152-1 Security update for rubygem-activejob-4_2

This update for rubygem-activejob-42 fixes the following issues: Security issue fixed: - CVE-2018-16476: Fixed broken access control vulnerability bsc1117632...

Arbitrary Code Execution

rubygem-openshift-origin-node is vulnerable to arbitrary code execution attacks. The vulnerability exists as Red Hat OpenShift Enterprise 2.0 and 2.1 and OpenShift Origin allow remote authenticated users to execute arbitrary commands via shell metacharacters in a directory name that is referenced...