Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
suseSuseSUSE-SU-2016:0967-1
HistoryApr 07, 2016 - 1:08 p.m.

Security update for rubygem-actionpack-3_2 (important)

2016-04-0713:08:19
lists.opensuse.org
14

0.943 High

EPSS

Percentile

99.0%

JSON

This update for rubygem-actionpack-3_2 fixes the following issues:

  • CVE-2016-2097: rubygem-actionview: Possible Information Leak
    Vulnerability in Action View. (bsc#968850)

  • CVE-2016-2098: rubygem-actionpack: Possible remote code execution
    vulnerability in Action Pack (bsc#968849)

OSVersionArchitecturePackageVersionFilename
SUSE Linux Enterprise Software Development Kit11.4i586rubygem-actionpack-3_2<Β 3.2.12-0.26.1rubygem-actionpack-3_2-3.2.12-0.26.1.i586.rpm
SUSE Linux Enterprise Software Development Kit11.4ia64rubygem-actionpack-3_2<Β 3.2.12-0.26.1rubygem-actionpack-3_2-3.2.12-0.26.1.ia64.rpm
SUSE Webyast1.3ia64rubygem-actionpack-3_2<Β 3.2.12-0.26.1rubygem-actionpack-3_2-3.2.12-0.26.1.ia64.rpm
SUSE Linux Enterprise Software Development Kit11.4ppc64rubygem-actionpack-3_2<Β 3.2.12-0.26.1rubygem-actionpack-3_2-3.2.12-0.26.1.ppc64.rpm
SUSE Webyast1.3s390xrubygem-actionpack-3_2<Β 3.2.12-0.26.1rubygem-actionpack-3_2-3.2.12-0.26.1.s390x.rpm
SUSE Linux Enterprise Software Development Kit11.4s390xrubygem-actionpack-3_2<Β 3.2.12-0.26.1rubygem-actionpack-3_2-3.2.12-0.26.1.s390x.rpm
SUSE Webyast1.3i586rubygem-actionpack-3_2<Β 3.2.12-0.26.1rubygem-actionpack-3_2-3.2.12-0.26.1.i586.rpm
SUSE Lifecycle Management Server1.3x86_64rubygem-actionpack-3_2<Β 3.2.12-0.26.1rubygem-actionpack-3_2-3.2.12-0.26.1.x86_64.rpm
SUSE Studio Onsite1.3x86_64rubygem-actionpack-3_2<Β 3.2.12-0.26.1rubygem-actionpack-3_2-3.2.12-0.26.1.x86_64.rpm
SUSE Webyast1.3x86_64rubygem-actionpack-3_2<Β 3.2.12-0.26.1rubygem-actionpack-3_2-3.2.12-0.26.1.x86_64.rpm
Rows per page:
1-10 of 121

Related

nessus 7
suse 5
ibm 1
redhat 3
freebsd 1
openvas 12
osv 4
debian 5
fedora 4
debiancve 2
prion 2
cve 2
zdt 1
ubuntucve 2
checkpoint_advisories 1
canvas 1
github 2
seebug 2
packetstorm 1
gitlab 1
rubygems 3
hackerone 2
veracode 1
attackerkb 1
nessus
nessus
openSUSE Security Update : rubygem-actionpack-3_2 (openSUSE-2016-369)
2016-03-21 00:00:00
FreeBSD : rails -- multiple vulnerabilities (5a016dd0-8aa8-490e-a596-55f4cc17e4ef)
2016-03-07 00:00:00
Debian DSA-3509-1 : rails - security update
2016-03-10 00:00:00
suse
suse
Security update for rubygem-actionview-4_1 (important)
2016-03-22 18:08:06
Security update for rubygem-actionpack-3_2 (important)
2016-03-19 16:13:08
Security update for rubygem-actionview-4_2 (important)
2016-03-16 19:12:46
ibm
ibm
Security Bulletin: Vulnerabilities in Ruby on Rails affect IBM License Metric Tool v9 and IBM BigFix Inventory v9 (CVE-2016-2098 CVE-2016-2097)
2022-08-19 21:04:31
redhat
redhat
(RHSA-2016:0456) Important: rh-ror41 security update
2016-03-15 00:00:00
(RHSA-2016:0455) Important: ruby193 security update
2016-03-15 00:00:00
(RHSA-2016:0454) Important: ror40 security update
2016-03-15 00:00:00
freebsd
freebsd
rails -- multiple vulnerabilities
2016-02-29 00:00:00
openvas
openvas
openSUSE: Security Advisory for rubygem-actionpack-3_2 (openSUSE-SU-2016:0835-1)
2016-03-20 00:00:00
Debian: Security Advisory (DSA-3509-1)
2016-03-08 00:00:00
Debian Security Advisory DSA 3509-1 (rails - security update)
2016-03-09 00:00:00
osv
osv
rails - security update
2016-03-09 00:00:00
actionpack allows remote code execution via application's unrestricted use of render method
2017-10-24 18:33:35
ruby-actionpack-3.2 - security update
2016-08-28 00:00:00
debian
debian
[SECURITY] [DSA 3509-1] rails security update
2016-03-09 17:36:11
[SECURITY] [DSA 3509-1] rails security update
2016-03-09 17:48:46
[SECURITY] [DSA 3509-1] rails security update
2016-03-09 17:13:24
fedora
fedora
[SECURITY] Fedora 23 Update: rubygem-actionview-4.2.3-5.fc23
2016-03-17 20:58:05
[SECURITY] Fedora 22 Update: rubygem-actionview-4.2.0-5.fc22
2016-03-17 21:23:47
[SECURITY] Fedora 23 Update: rubygem-actionpack-4.2.3-5.fc23
2016-03-17 20:58:04
debiancve
debiancve
CVE-2016-2098
2016-04-07 23:59:00
CVE-2016-2097
2016-04-07 23:59:00
prion
prion
Design/Logic Flaw
2016-04-07 23:59:00
Directory traversal
2016-04-07 23:59:00
cve
cve
CVE-2016-2098
2016-04-07 23:59:00
CVE-2016-2097
2016-04-07 23:59:00
zdt
zdt
Ruby on Rails ActionPack Inline ERB - Code Execution (Metasploit)
2016-07-11 00:00:00
ubuntucve
ubuntucve
CVE-2016-2098
2016-04-07 00:00:00
CVE-2016-2097
2016-04-07 00:00:00
checkpoint_advisories
checkpoint_advisories
Ruby on Rails Remote Code Execution (CVE-2016-2098)
2016-07-19 00:00:00
canvas
canvas
Immunity Canvas: RAILS_ACTIONPACK_RENDER
2016-04-07 23:59:00
github
github
actionpack allows remote code execution via application's unrestricted use of render method
2017-10-24 18:33:35
actionview contains Path Traversal vulnerability
2017-10-24 18:33:35
seebug
seebug
Ruby on Rails Action PackθΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄ž
2016-03-17 00:00:00
Ruby on Rails Action View 俑息泄漏
2016-03-17 00:00:00
packetstorm
packetstorm
Ruby On Rails ActionPack Inline ERB Code Execution
2016-07-09 00:00:00
gitlab
gitlab
Possible Information Leak Vulnerability
2016-04-07 00:00:00
rubygems
rubygems
Possible remote code execution vulnerability in Action Pack
2016-02-28 21:00:00
Possible Information Leak Vulnerability in Action View
2016-02-28 21:00:00
Possible Information Leak Vulnerability in Action View
2016-02-28 21:00:00
hackerone
hackerone
Ruby on Rails: Remote code execution using render :inline
2016-02-01 19:18:59
Ruby on Rails: Regarding [CVE-2016-0752] Possible Information Leak Vulnerability in Action View
2016-02-01 10:00:34
veracode
veracode
Directory Traversal And Information Disclosure
2019-01-15 09:10:39
attackerkb
attackerkb
CVE-2016-2097
2016-04-07 00:00:00

0.943 High

EPSS

Percentile

99.0%

JSON
Related for SUSE-SU-2016:0967-1
nessus7suse5ibm1redhat3freebsd1openvas12osv4debian5fedora4debiancve2prion2cve2zdt1ubuntucve2checkpoint_advisories1canvas1github2seebug2packetstorm1gitlab1rubygems3hackerone2veracode1attackerkb1