ID de Prueba:	1.3.6.1.4.1.25623.1.0.123674
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2013-0612)
Resumen:	The remote host is missing an update for the 'ruby' package(s) announced via the ELSA-2013-0612 advisory.
Descripción:	Summary: The remote host is missing an update for the 'ruby' package(s) announced via the ELSA-2013-0612 advisory. Vulnerability Insight: [1.8.7.352-10] - escaping vulnerability about Exception#to_s / NameError#to_s * ruby-1.8.7-p371-CVE-2012-4481.patch - Related: rhbz#915379 [1.8.7.352-9] - Fix regression introduced by fix for entity expansion DOS vulnerability in REXML ([link moved to references]) * ruby-2.0.0-add-missing-rexml-require.patch - Related: rhbz#915379 [1.8.7.352-8] - Addresses entity expansion DoS vulnerability in REXML. * ruby-2.0.0-entity-expansion-DoS-vulnerability-in-REXML.patch - Resolves: rhbz#915379 Affected Software/OS: 'ruby' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-4481 MDVSA-2013:124 http://www.mandriva.com/security/advisories?name=MDVSA-2013:124 RHSA-2013:0129 http://rhn.redhat.com/errata/RHSA-2013-0129.html RHSA-2013:0612 http://rhn.redhat.com/errata/RHSA-2013-0612.html [oss-security] 20121005 Re: CVE Request -- ruby (1.8.x with patched CVE-2011-1005): Incomplete fix for CVE-2011-1005 for NameError#to_s method when used on objects http://www.openwall.com/lists/oss-security/2012/10/05/4 https://bugzilla.redhat.com/show_bug.cgi?id=863484 https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0294 Common Vulnerability Exposure (CVE) ID: CVE-2013-1821 BugTraq ID: 58141 http://www.securityfocus.com/bid/58141 Debian Security Information: DSA-2738 (Google Search) http://www.debian.org/security/2013/dsa-2738 Debian Security Information: DSA-2809 (Google Search) http://www.debian.org/security/2013/dsa-2809 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702525 https://bugzilla.redhat.com/show_bug.cgi?id=914716 http://www.openwall.com/lists/oss-security/2013/03/06/5 RedHat Security Advisories: RHSA-2013:0611 http://rhn.redhat.com/errata/RHSA-2013-0611.html RedHat Security Advisories: RHSA-2013:0612 RedHat Security Advisories: RHSA-2013:1028 http://rhn.redhat.com/errata/RHSA-2013-1028.html RedHat Security Advisories: RHSA-2013:1147 http://rhn.redhat.com/errata/RHSA-2013-1147.html http://secunia.com/advisories/52783 http://secunia.com/advisories/52902 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2013&m=slackware-security.426862 SuSE Security Announcement: SUSE-SU-2013:0609 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00001.html SuSE Security Announcement: SUSE-SU-2013:0647 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-04/msg00015.html SuSE Security Announcement: openSUSE-SU-2013:0603 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-04/msg00034.html SuSE Security Announcement: openSUSE-SU-2013:0614 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-04/msg00036.html http://www.ubuntu.com/usn/USN-1780-1
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.