Security update for ruby19 (important)

2017-04-0321:09:44

lists.opensuse.org

0.011 Low

EPSS

Percentile

82.3%

JSON

This update for ruby19 fixes the following issues:

Security issue fixed:

CVE-2016-2339: heap overflow vulnerability in the
Fiddle::Function.new"initialize" (bsc#1018808)

Bugfixes:

fix small mistake in the backport for (bsc#986630)
HTTP Header injection in ‘net/http’ (bsc#986630)
make the testsuite work with our new openssl requirements

OSVersionArchitecturePackageVersionFilename
SUSE Studio Onsite1.3x86_64ruby19-devel< 1.9.3.p392-0.26.1ruby19-devel-1.9.3.p392-0.26.1.x86_64.rpm
SUSE Studio Onsite1.3x86_64ruby19-devel-extra< 1.9.3.p392-0.26.1ruby19-devel-extra-1.9.3.p392-0.26.1.x86_64.rpm
SUSE Studio Onsite1.3x86_64ruby19< 1.9.3.p392-0.26.1ruby19-1.9.3.p392-0.26.1.x86_64.rpm
SUSE Studio Onsite Runner1.3s390xruby19< 1.9.3.p392-0.26.1ruby19-1.9.3.p392-0.26.1.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
SUSE Studio Onsite	1.3	x86_64	ruby19-devel	< 1.9.3.p392-0.26.1	ruby19-devel-1.9.3.p392-0.26.1.x86_64.rpm
SUSE Studio Onsite	1.3	x86_64	ruby19-devel-extra	< 1.9.3.p392-0.26.1	ruby19-devel-extra-1.9.3.p392-0.26.1.x86_64.rpm
SUSE Studio Onsite	1.3	x86_64	ruby19	< 1.9.3.p392-0.26.1	ruby19-1.9.3.p392-0.26.1.x86_64.rpm
SUSE Studio Onsite Runner	1.3	s390x	ruby19	< 1.9.3.p392-0.26.1	ruby19-1.9.3.p392-0.26.1.s390x.rpm