[SUSE-SU-2021:3837-1] Security update for ruby2.1
Severity
Important
Affected Packages
39
CVEs
4
Security update for ruby2.1
This update for ruby2.1 fixes the following issues:
- CVE-2020-25613: Fixed potential HTTP request smuggling in WEBrick (bsc#1177125).
- CVE-2021-31799: Fixed Command injection vulnerability in RDoc (bsc#1190375).
- CVE-2021-31810: Fixed trusting FTP PASV responses vulnerability in Net:FTP (bsc#1188161).
- CVE-2021-32066: Fixed StartTLS stripping vulnerability in Net:IMAP (bsc#1188160).
- ID
- SUSE-SU-2021:3837-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2021/suse-su-20213837-1/
- Published
-
2021-12-01T15:07:17
(2 years ago) - Modified
-
2021-12-01T15:07:17
(2 years ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS-2020-1451
-
ALAS-2021-1468
-
ALAS-2021-1505
-
ALAS-2021-1506
-
ALAS2-2021-1641
-
ALAS2-2024-2534
-
ALAS2-2024-2570
-
ALPINE:CVE-2020-25613
-
ALPINE:CVE-2021-31799
-
ALPINE:CVE-2021-31810
-
ALPINE:CVE-2021-32066
-
ALSA-2021:2584
-
ALSA-2021:2587
-
ALSA-2021:2588
-
ALSA-2021:3020
-
ALSA-2022:0543
-
ALSA-2022:0672
-
ASA-202107-18
-
ASA-202107-23
-
ASA-202107-24
-
DSA-5066-1
-
ELSA-2021-2584
-
ELSA-2021-2587
-
ELSA-2021-2588
-
ELSA-2021-3020
-
ELSA-2022-0543
-
ELSA-2022-0672
-
FEDORA-2020-02ca18c2a0
-
FEDORA-2020-fe2a7d7390
-
FEDORA-2021-36cdab1f8d
-
FREEBSD:57027417-AB7F-11EB-9596-080027F515EA
-
FREEBSD:7ED5779C-E4C7-11EB-91D7-08002728F74C
-
GLSA-202401-05
-
GLSA-202401-27
-
MS:CVE-2020-25613
-
openSUSE-SU-2021:0471-1
-
openSUSE-SU-2021:1535-1
-
openSUSE-SU-2021:3838-1
-
RHSA-2021:2584
-
RHSA-2021:2587
-
RHSA-2021:2588
-
RHSA-2021:3020
-
RHSA-2022:0543
-
RHSA-2022:0672
-
RLSA-2021:2584
-
RLSA-2021:2587
-
RLSA-2021:2588
-
RLSA-2021:3020
-
RLSA-2022:0543
-
RLSA-2022:0672
-
RUBYSEC:RDOC-2021-31799
-
RUBYSEC:WEBRICK-2020-25613
-
SUSE-SU-2021:0933-1
-
SUSE-SU-2021:3838-1
-
SUSE-SU-2022:1512-1
-
USN-4882-1
-
USN-5020-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Suse | SUSE ratings |
|
|
| Suse | URL of this CSAF notice |
|
|
| Suse | URL for SUSE-SU-2021:3837-1 |
|
|
| Suse | E-Mail link for SUSE-SU-2021:3837-1 |
|
|
| Bugzilla | SUSE Bug 1177125 |
|
|
| Bugzilla | SUSE Bug 1188160 |
|
|
| Bugzilla | SUSE Bug 1188161 |
|
|
| Bugzilla | SUSE Bug 1190375 |
|
|
| CVE | SUSE CVE CVE-2020-25613 page |
|
|
| CVE | SUSE CVE CVE-2021-31799 page |
|
|
| CVE | SUSE CVE CVE-2021-31810 page |
|
|
| CVE | SUSE CVE CVE-2021-32066 page |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/suse/ruby2.1?arch=x86_64&distro=sles-12&sp=5 | suse |
 ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/ruby2.1?arch=x86_64&distro=sles-12&sp=4 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/ruby2.1?arch=x86_64&distro=sles-12&sp=3 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/ruby2.1?arch=x86_64&distro=sles-12&sp=2 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/ruby2.1?arch=s390x&distro=sles-12&sp=5 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/ruby2.1?arch=s390x&distro=sles-12&sp=4 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/ruby2.1?arch=s390x&distro=sles-12&sp=3 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/ruby2.1?arch=ppc64le&distro=sles-12&sp=5 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/ruby2.1?arch=ppc64le&distro=sles-12&sp=4 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/ruby2.1?arch=ppc64le&distro=sles-12&sp=3 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/ruby2.1?arch=aarch64&distro=sles-12&sp=5 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/ruby2.1?arch=aarch64&distro=sles-12&sp=4 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/ruby2.1?arch=aarch64&distro=sles-12&sp=3 | suse |
ruby2.1
|
< 2.1.9-19.6.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=x86_64&distro=sles-12&sp=5 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=x86_64&distro=sles-12&sp=4 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=x86_64&distro=sles-12&sp=3 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=x86_64&distro=sles-12&sp=2 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=s390x&distro=sles-12&sp=5 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=s390x&distro=sles-12&sp=4 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=s390x&distro=sles-12&sp=3 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=ppc64le&distro=sles-12&sp=5 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=ppc64le&distro=sles-12&sp=4 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=ppc64le&distro=sles-12&sp=3 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=aarch64&distro=sles-12&sp=5 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=aarch64&distro=sles-12&sp=4 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/ruby2.1-stdlib?arch=aarch64&distro=sles-12&sp=3 | suse |
ruby2.1-stdlib
|
< 2.1.9-19.6.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=x86_64&distro=sles-12&sp=5 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=x86_64&distro=sles-12&sp=4 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=x86_64&distro=sles-12&sp=3 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=x86_64&distro=sles-12&sp=2 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | x86_64 | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=s390x&distro=sles-12&sp=5 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=s390x&distro=sles-12&sp=4 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=s390x&distro=sles-12&sp=3 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | s390x | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=ppc64le&distro=sles-12&sp=5 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=ppc64le&distro=sles-12&sp=4 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=ppc64le&distro=sles-12&sp=3 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | ppc64le | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=aarch64&distro=sles-12&sp=5 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=aarch64&distro=sles-12&sp=4 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | aarch64 | |
| Affected | pkg:rpm/suse/libruby2_1-2_1?arch=aarch64&distro=sles-12&sp=3 | suse |
libruby2_1-2_1
|
< 2.1.9-19.6.1 | sles-12 | aarch64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |