Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Производитель ПО
Наименование ПО
rubygem-actionmailer-2_3
(any)
rubygem-actionpack-2_3
(any)
rubygem-activerecord-2_3
(any)
rubygem-activeresource-2_3
(any)
rubygem-activesupport-2_3
(any)
rubygem-rack
(any)
rubygem-rails
(any)
rubygem-rails-2_3
(any)
Описание
Уведомление безопасности об уязвимостях SUSE Linux Enterprise Software Development Kit 11 SP1, SUSE Studio Standard Edition 1.2, WebYaST 1.2, SUSE Studio Onsite 1.2, SUSE Studio Extension for System z 1.2, WebYaST [Appliance - Tools]
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE Linux Enterprise Software Development Kit 11 SP1:
i586, ia64, ppc64, s390x, x86_64:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
SUSE Linux Enterprise Software Development Kit 11 SP1:
noarch:
rubygem-rails - 2.3.14-0.8.6.1
SUSE Studio Standard Edition 1.2:
x86_64:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
SUSE Studio Standard Edition 1.2:
noarch:
rubygem-rails - 2.3.14-0.8.6.1
WebYaST 1.2:
i586, ia64, ppc64, s390x, x86_64:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
SUSE Studio Onsite 1.2:
x86_64:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
SUSE Studio Extension for System z 1.2:
s390x:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
WebYaST [Appliance - Tools]:
i586, ia64, ppc64, s390x, x86_64:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
SUSE Linux Enterprise Software Development Kit 11 SP1:
i586, ia64, ppc64, s390x, x86_64:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
SUSE Linux Enterprise Software Development Kit 11 SP1:
noarch:
rubygem-rails - 2.3.14-0.8.6.1
SUSE Studio Standard Edition 1.2:
x86_64:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
SUSE Studio Standard Edition 1.2:
noarch:
rubygem-rails - 2.3.14-0.8.6.1
WebYaST 1.2:
i586, ia64, ppc64, s390x, x86_64:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
SUSE Studio Onsite 1.2:
x86_64:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
SUSE Studio Extension for System z 1.2:
s390x:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
WebYaST [Appliance - Tools]:
i586, ia64, ppc64, s390x, x86_64:
rubygem-rails-2_3 - 2.3.14-0.7.4.3
rubygem-activerecord-2_3 - 2.3.14-0.7.4.3
rubygem-actionpack-2_3 - 2.3.14-0.7.4.3
rubygem-rack - 1.1.2-0.8.8.3
rubygem-activesupport-2_3 - 2.3.14-0.7.4.3
rubygem-activeresource-2_3 - 2.3.14-0.7.4.3
rubygem-actionmailer-2_3 - 2.3.14-0.7.4.3
Ссылки
http://lists.suse.com/pipermail/sle-security-updates/2012-March/000065.html
https://bugzilla.novell.com/668817
https://bugzilla.novell.com/712057
https://bugzilla.novell.com/712058
https://bugzilla.novell.com/712060
https://bugzilla.novell.com/712062
http://download.novell.com/patch/finder/?keywords=a9a7e5b0e289aeb951fcc43761e059bf
Источник: CVE
Наименование: CVE-2011-0447
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0447
Источник: CVE
Наименование: CVE-2011-0446
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0446
Источник: CVE
Наименование: CVE-2011-2931
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2931
Источник: CVE
Наименование: CVE-2011-2932
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2932
Источник: CVE
Наименование: CVE-2011-3186
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3186
Источник: CVE
Наименование: CVE-2011-2930
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2930
Источник: CVE
Наименование: CVE-2011-0449
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0449
Источник: CVE
Наименование: CVE-2011-0448
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0448
Источник: CVE
Наименование: CVE-2010-3933
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3933
https://bugzilla.novell.com/668817
https://bugzilla.novell.com/712057
https://bugzilla.novell.com/712058
https://bugzilla.novell.com/712060
https://bugzilla.novell.com/712062
http://download.novell.com/patch/finder/?keywords=a9a7e5b0e289aeb951fcc43761e059bf
Источник: CVE
Наименование: CVE-2011-0447
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0447
Источник: CVE
Наименование: CVE-2011-0446
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0446
Источник: CVE
Наименование: CVE-2011-2931
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2931
Источник: CVE
Наименование: CVE-2011-2932
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2932
Источник: CVE
Наименование: CVE-2011-3186
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3186
Источник: CVE
Наименование: CVE-2011-2930
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2930
Источник: CVE
Наименование: CVE-2011-0449
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0449
Источник: CVE
Наименование: CVE-2011-0448
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0448
Источник: CVE
Наименование: CVE-2010-3933
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3933