Fedora 13 : rubygem-actionpack-2.3.5-4.fc13 (2011-2138)

Security fixes CVE-2011-0446, CVE-2011-0447. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

[SECURITY] Fedora 14 Update: rubygem-actionpack-2.3.8-3.fc14

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

FreeBSD Ports: rubygem-mail

The remote host is missing an update to the system as announced in the referenced advisory. VID 1cae628c-3569-11e0-8e81-0022190034c0 OpenVAS Vulnerability Test $ Description: Auto generated from VID 1cae628c-3569-11e0-8e81-0022190034c0 Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

FreeBSD Ports: rubygem-mail

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

FreeBSD : rubygem-mail -- Remote Arbitrary Shell Command Injection Vulnerability (1cae628c-3569-11e0-8e81-0022190034c0)

Secunia reports : Input passed via an email from address is not properly sanitised in the 'deliver' function lib/mail/network/deliverymethods/sendmail.rb before being used as a command line argument. This can be exploited to inject arbitrary shell commands. %NASLMINLEVEL 70300 C Tenable Network...

openSUSE Security Update : rubygem-actionpack-2_3 (rubygem-actionpack-2_3-1934)

This update of rubygems fixes two vulnerabilities : - CVE-2008-7248: CVSS v2 Base Score: 4.3 Rails CSRF protection can be bypassed by using special content-types for a HTTP request. - CVE-2009-4214: CVSS v2 Base Score: 4.3 The method striptags does not completely protect against XSS attacks...

openSUSE Security Update : rubygem-actionpack (rubygem-actionpack-1946)

This update of rubygems fixes two vulnerabilities : - CVE-2008-7248: CVSS v2 Base Score: 4.3 Rails CSRF protection can be bypassed by using special content-types for a HTTP request. - CVE-2009-4214: CVSS v2 Base Score: 4.3 The method striptags does not completely protect against XSS attacks...

openSUSE Security Update : rubygem-actionpack (rubygem-actionpack-1946)

This update of rubygems fixes two vulnerabilities : - CVE-2008-7248: CVSS v2 Base Score: 4.3 Rails CSRF protection can be bypassed by using special content-types for a HTTP request. - CVE-2009-4214: CVSS v2 Base Score: 4.3 The method striptags does not completely protect against XSS attacks...

Fedora Core 11 FEDORA-2009-13361 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-13361. OpenVAS Vulnerability Test $Id: fcore200913361.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-13361 rubygem-actionpack Authors: Thomas Reinke...

Fedora Core 11 FEDORA-2009-13361 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-13361. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...

Fedora Core 12 FEDORA-2009-13393 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-13393. OpenVAS Vulnerability Test $Id: fcore200913393.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-13393 rubygem-actionpack Authors: Thomas Reinke...

Fedora Core 12 FEDORA-2009-13393 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-13393. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...

[SECURITY] Fedora 12 Update: rubygem-actionpack-2.3.4-3.fc12

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

Fedora 11 : rubygem-actionpack-2.3.2-4.fc11 (2009-13361)

Fix CVE-2009-4214 bz 542786 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C...

Fedora Core 10 FEDORA-2009-12966 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-12966. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...

Fedora Core 10 FEDORA-2009-12966 (rubygem-actionpack)

The remote host is missing an update to rubygem-actionpack announced via advisory FEDORA-2009-12966. OpenVAS Vulnerability Test $Id: fcore200912966.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-12966 rubygem-actionpack Authors: Thomas Reinke...

Fedora 10 : rubygem-actionpack-2.1.1-5.fc10 (2009-12966)

Two security issues are found on activepack shipped on Fedora 10. One bug is that there is a weakness in the striptags function in ruby on rails bug 542786, CVE-2009-4214. Another one is a possibility to circumvent protection against cross-site request forgery CSRF attacks bug 544329. This new rp...

openSUSE Security Update : rubygem-activesupport-2_1 (rubygem-activesupport-2_1-1321)

This update improves the escaping in the helper code of Ruby on Rails to protect against XSS attacks CVE-2009-3009 and an information leak CVE-2009-3086. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securi...

openSUSE Security Update : rubygem-actionpack-2_1 (rubygem-actionpack-2_1-1320)

This update improves the escaping in the helper code of Ruby on Rails to protect against XSS attacks CVE-2009-3009 and an information leak CVE-2009-3086. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securi...

Fedora Core 11 FEDORA-2009-10484 (rubygem-actionmailer)

The remote host is missing an update to rubygem-actionmailer announced via advisory FEDORA-2009-10484. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are...