Early Access — Mondoo Vulnerability Intelligence is currently in preview.

SUSE-SU-2022:2108-1

UNKNOWN

Security update for rubygem-actionpack-5_1, rubygem-activesupport-5_1

Published Jun 16, 2022

Modified 3 years ago

Fix available

Details

This update for rubygem-actionpack-5_1 and rubygem-activesupport-5_1 fixes the following issues:

CVE-2021-22904: Fixed possible DoS Vulnerability in Action Controller Token Authentication (bsc#1185780)
CVE-2022-23633: Fixed possible exposure of information vulnerability in Action Pack (bsc#1196182)

Affected Packages

SUSE:Linux Enterprise High Availability Extension 15ruby2.5-rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

SUSE:Linux Enterprise High Availability Extension 15ruby2.5-rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

SUSE:Linux Enterprise High Availability Extension 15rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

SUSE:Linux Enterprise High Availability Extension 15rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

SUSE:Linux Enterprise High Availability Extension 15 SP1ruby2.5-rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

SUSE:Linux Enterprise High Availability Extension 15 SP1ruby2.5-rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

SUSE:Linux Enterprise High Availability Extension 15 SP1rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

SUSE:Linux Enterprise High Availability Extension 15 SP1rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

SUSE:Linux Enterprise High Availability Extension 15 SP2ruby2.5-rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

SUSE:Linux Enterprise High Availability Extension 15 SP2ruby2.5-rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

SUSE:Linux Enterprise High Availability Extension 15 SP2rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

SUSE:Linux Enterprise High Availability Extension 15 SP2rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

SUSE:Linux Enterprise High Availability Extension 15 SP3ruby2.5-rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

SUSE:Linux Enterprise High Availability Extension 15 SP3ruby2.5-rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

SUSE:Linux Enterprise High Availability Extension 15 SP3rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

SUSE:Linux Enterprise High Availability Extension 15 SP3rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

SUSE:Linux Enterprise High Availability Extension 15 SP4ruby2.5-rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

SUSE:Linux Enterprise High Availability Extension 15 SP4ruby2.5-rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

SUSE:Linux Enterprise High Availability Extension 15 SP4rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

SUSE:Linux Enterprise High Availability Extension 15 SP4rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

openSUSE:Leap 15.3ruby2.5-rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

openSUSE:Leap 15.3ruby2.5-rubygem-actionpack-doc-5_1

Fixed in:

5.1.4-150000.3.12.1

openSUSE:Leap 15.3ruby2.5-rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

openSUSE:Leap 15.3ruby2.5-rubygem-activesupport-doc-5_1

Fixed in:

5.1.4-150000.3.6.1

openSUSE:Leap 15.3rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

openSUSE:Leap 15.3rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

openSUSE:Leap 15.4ruby2.5-rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

openSUSE:Leap 15.4ruby2.5-rubygem-actionpack-doc-5_1

Fixed in:

5.1.4-150000.3.12.1

openSUSE:Leap 15.4ruby2.5-rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

openSUSE:Leap 15.4ruby2.5-rubygem-activesupport-doc-5_1

Fixed in:

5.1.4-150000.3.6.1

openSUSE:Leap 15.4rubygem-actionpack-5_1

Fixed in:

5.1.4-150000.3.12.1

openSUSE:Leap 15.4rubygem-activesupport-5_1

Fixed in:

5.1.4-150000.3.6.1

Timeline

PublishedJun 16, 2022

ModifiedJun 16, 2022

SUSE-SU-2022:2108-1 | Mondoo Vulnerability Intelligence

SUSE-SU-2022:2108-1

Details

Affected Packages

References

Upstream

Related

Ecosystems

Timeline