Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Производитель ПО
Наименование ПО
rubygem-actionmailer
(any)
rubygem-actionmailer-2_3
(any)
rubygem-actionmailer-2_3-doc
(any)
rubygem-actionmailer-2_3-testsuite
(any)
rubygem-actionmailer-3_2
(any)
rubygem-actionmailer-3_2-doc
(any)
rubygem-actionpack
(any)
rubygem-actionpack-2_3
(any)
rubygem-actionpack-2_3-doc
(any)
rubygem-actionpack-2_3-testsuite
(any)
rubygem-actionpack-3_2
(any)
rubygem-actionpack-3_2-doc
(any)
rubygem-activemodel-3_2
(any)
rubygem-activemodel-3_2-doc
(any)
rubygem-activerecord
(any)
rubygem-activerecord-2_3
(any)
rubygem-activerecord-2_3-doc
(any)
rubygem-activerecord-2_3-testsuite
(any)
rubygem-activerecord-3_2
(any)
rubygem-activerecord-3_2-doc
(any)
rubygem-activeresource
(any)
rubygem-activeresource-2_3
(any)
rubygem-activeresource-2_3-doc
(any)
rubygem-activeresource-2_3-testsuite
(any)
rubygem-activeresource-3_2
(any)
rubygem-activeresource-3_2-doc
(any)
rubygem-activesupport
(any)
rubygem-activesupport-2_3
(any)
rubygem-activesupport-2_3-doc
(any)
rubygem-activesupport-3_2
(any)
rubygem-activesupport-3_2-doc
(any)
rubygem-rack-1_1
(any)
rubygem-rack-1_1-doc
(any)
rubygem-rack-1_1-testsuite
(any)
rubygem-rack-1_2
(any)
rubygem-rack-1_2-doc
(any)
rubygem-rack-1_2-testsuite
(any)
rubygem-rack-1_3
(any)
rubygem-rack-1_3-doc
(any)
rubygem-rack-1_3-testsuite
(any)
rubygem-rack-1_4
(any)
rubygem-rack-1_4-doc
(any)
rubygem-rack-1_4-testsuite
(any)
rubygem-rails
(any)
rubygem-rails-2_3
(any)
rubygem-rails-2_3-doc
(any)
rubygem-rails-3_2
(any)
rubygem-rails-3_2-doc
(any)
rubygem-railties-3_2
(any)
rubygem-railties-3_2-doc
(any)
rubygem-sprockets-2_2
(any)
rubygem-sprockets-2_2-doc
(any)
Описание
Уведомление безопасности об уязвимостях openSUSE 12.1, openSUSE 12.2
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
openSUSE 12.1:
noarch:
rubygem-actionmailer - 2.3.16-2.7.1
rubygem-activerecord - 2.3.16-2.7.1
rubygem-rails - 2.3.16-2.7.1
rubygem-actionpack - 2.3.16-2.7.1
rubygem-activeresource - 2.3.16-2.7.1
rubygem-activesupport - 2.3.16-2.7.1
openSUSE 12.2:
noarch:
rubygem-activeresource - 2.3.16-3.5.1
rubygem-activesupport - 2.3.16-3.5.1
rubygem-rails - 2.3.16-3.5.1
rubygem-activerecord - 2.3.16-3.5.1
rubygem-actionmailer - 2.3.16-2.5.1
rubygem-actionpack - 2.3.16-2.5.1
openSUSE 12.1:
noarch:
rubygem-actionmailer - 2.3.16-2.7.1
rubygem-activerecord - 2.3.16-2.7.1
rubygem-rails - 2.3.16-2.7.1
rubygem-actionpack - 2.3.16-2.7.1
rubygem-activeresource - 2.3.16-2.7.1
rubygem-activesupport - 2.3.16-2.7.1
openSUSE 12.2:
noarch:
rubygem-activeresource - 2.3.16-3.5.1
rubygem-activesupport - 2.3.16-3.5.1
rubygem-rails - 2.3.16-3.5.1
rubygem-activerecord - 2.3.16-3.5.1
rubygem-actionmailer - 2.3.16-2.5.1
rubygem-actionpack - 2.3.16-2.5.1
Ссылки
http://lists.opensuse.org/opensuse-security-announce/2013-02/msg00003.html
https://bugzilla.novell.com/766792
https://bugzilla.novell.com/775649
https://bugzilla.novell.com/775653
https://bugzilla.novell.com/796712
https://bugzilla.novell.com/797449
https://bugzilla.novell.com/797452
https://bugzilla.novell.com/798452
https://bugzilla.novell.com/798458
https://bugzilla.novell.com/800320
Источник: CVE
Наименование: CVE-2012-2695
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2695
Источник: CVE
Наименование: CVE-2013-0156
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0156
Источник: CVE
Наименование: CVE-2013-0155
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0155
Источник: CVE
Наименование: CVE-2012-5664
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5664
Источник: CVE
Наименование: CVE-2013-0333
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0333
https://bugzilla.novell.com/766792
https://bugzilla.novell.com/775649
https://bugzilla.novell.com/775653
https://bugzilla.novell.com/796712
https://bugzilla.novell.com/797449
https://bugzilla.novell.com/797452
https://bugzilla.novell.com/798452
https://bugzilla.novell.com/798458
https://bugzilla.novell.com/800320
Источник: CVE
Наименование: CVE-2012-2695
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2695
Источник: CVE
Наименование: CVE-2013-0156
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0156
Источник: CVE
Наименование: CVE-2013-0155
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0155
Источник: CVE
Наименование: CVE-2012-5664
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5664
Источник: CVE
Наименование: CVE-2013-0333
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0333