Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | |||
ID de Prueba: | 1.3.6.1.4.1.25623.1.0.852058 |
Categoría: | SuSE Local Security Checks |
Título: | openSUSE: Security Advisory for rubygem-sprockets (openSUSE-SU-2018:2124-1) |
Resumen: | The remote host is missing an update for the 'rubygem-sprockets'; package(s) announced via the openSUSE-SU-2018:2124-1 advisory. |
Descripción: | Summary: The remote host is missing an update for the 'rubygem-sprockets' package(s) announced via the openSUSE-SU-2018:2124-1 advisory. Vulnerability Insight: This update for rubygem-sprockets fixes the following issues: The following security vulnerability was addressed: - CVE-2018-3760: Fixed a path traversal issue in sprockets/server.rb:forbidden_request?(), which allowed remote attackers to read arbitrary files (bsc#1098369) This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or 'zypper patch'. Alternatively you can run the command listed for your product: - openSUSE Leap 15.0: zypper in -t patch openSUSE-2018-773=1 Affected Software/OS: rubygem-sprockets on openSUSE Leap 15.0. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N |
Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2018-3760 Debian Security Information: DSA-4242 (Google Search) https://www.debian.org/security/2018/dsa-4242 https://github.com/rails/sprockets/commit/c09131cf5b2c479263939c8582e22b98ed616c5fhttps://github.com/rails/sprockets/commit/9c34fa05900b968d74f08ccf40917848a7be9441https://github.com/rails/sprockets/commit/18b8a7f07a50c245e9aee7854ecdbe606bbd8bb5 https://groups.google.com/d/msg/rubyonrails-security/ft_J--l55fM/7roDfQ50BwAJ RedHat Security Advisories: RHSA-2018:2244 https://access.redhat.com/errata/RHSA-2018:2244 RedHat Security Advisories: RHSA-2018:2245 https://access.redhat.com/errata/RHSA-2018:2245 RedHat Security Advisories: RHSA-2018:2561 https://access.redhat.com/errata/RHSA-2018:2561 RedHat Security Advisories: RHSA-2018:2745 https://access.redhat.com/errata/RHSA-2018:2745 |
Copyright | Copyright (C) 2018 Greenbone Networks GmbH |
Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |