Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2015-9096 (GCVE-0-2015-9096)
Vulnerability from cvelistv5 – Published: 2017-06-12 20:00 – Updated: 2024-08-06 08:36
VLAI?
EPSS
Summary
Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.
Severity ?
No CVSS data available.
CWE
- n/a
Assigner
References
| URL | Tags | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||
Date Public ?
2017-06-12 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T08:36:31.894Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "DSA-3966",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2017/dsa-3966"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://hackerone.com/reports/137631"
},
{
"name": "[debian-lts-announce] 20180714 [SECURITY] [DLA 1421-1] ruby2.1 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/rubysec/ruby-advisory-db/issues/215"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.mbsd.jp/Whitepaper/smtpi.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2017-06-12T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-07-14T09:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "DSA-3966",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2017/dsa-3966"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://hackerone.com/reports/137631"
},
{
"name": "[debian-lts-announce] 20180714 [SECURITY] [DLA 1421-1] ruby2.1 security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/rubysec/ruby-advisory-db/issues/215"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.mbsd.jp/Whitepaper/smtpi.pdf"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9096",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-3966",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-3966"
},
{
"name": "https://hackerone.com/reports/137631",
"refsource": "MISC",
"url": "https://hackerone.com/reports/137631"
},
{
"name": "[debian-lts-announce] 20180714 [SECURITY] [DLA 1421-1] ruby2.1 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html"
},
{
"name": "https://github.com/rubysec/ruby-advisory-db/issues/215",
"refsource": "MISC",
"url": "https://github.com/rubysec/ruby-advisory-db/issues/215"
},
{
"name": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee",
"refsource": "MISC",
"url": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee"
},
{
"name": "http://www.mbsd.jp/Whitepaper/smtpi.pdf",
"refsource": "MISC",
"url": "http://www.mbsd.jp/Whitepaper/smtpi.pdf"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2015-9096",
"datePublished": "2017-06-12T20:00:00.000Z",
"dateReserved": "2017-06-12T00:00:00.000Z",
"dateUpdated": "2024-08-06T08:36:31.894Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2015-9096",
"date": "2026-05-02",
"epss": "0.01592",
"percentile": "0.8176"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ruby-lang:ruby:*:rc1:*:*:*:*:*:*\", \"versionEndIncluding\": \"2.4.0\", \"matchCriteriaId\": \"70BED4E2-17E3-4B9D-8C58-ECBE978E90F3\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.\"}, {\"lang\": \"es\", \"value\": \"El modulo Net::SMTP de Ruby anterior a su versi\\u00f3n 2.4.0 es vulnerable a la inyecci\\u00f3n de comandos SMTP mediante secuencias CRLF de los comandos \\\"RCPT TO\\\" o \\\"MAIL FROM\\\", como demuestra las secuencias CRLF inmediatamente antes y despu\\u00e9s de la substring DATA.\"}]",
"id": "CVE-2015-9096",
"lastModified": "2024-11-21T02:39:47.547",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N\", \"baseScore\": 6.1, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"REQUIRED\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 2.7}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:P/A:N\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": true}]}",
"published": "2017-06-12T20:29:00.190",
"references": "[{\"url\": \"http://www.mbsd.jp/Whitepaper/smtpi.pdf\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/rubysec/ruby-advisory-db/issues/215\", \"source\": \"cve@mitre.org\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://hackerone.com/reports/137631\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.debian.org/security/2017/dsa-3966\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.mbsd.jp/Whitepaper/smtpi.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/rubysec/ruby-advisory-db/issues/215\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://hackerone.com/reports/137631\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.debian.org/security/2017/dsa-3966\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-93\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2015-9096\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2017-06-12T20:29:00.190\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.\"},{\"lang\":\"es\",\"value\":\"El modulo Net::SMTP de Ruby anterior a su versi\u00f3n 2.4.0 es vulnerable a la inyecci\u00f3n de comandos SMTP mediante secuencias CRLF de los comandos \\\"RCPT TO\\\" o \\\"MAIL FROM\\\", como demuestra las secuencias CRLF inmediatamente antes y despu\u00e9s de la substring DATA.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":6.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":2.7}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:P/A:N\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-93\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ruby-lang:ruby:*:rc1:*:*:*:*:*:*\",\"versionEndIncluding\":\"2.4.0\",\"matchCriteriaId\":\"70BED4E2-17E3-4B9D-8C58-ECBE978E90F3\"}]}]}],\"references\":[{\"url\":\"http://www.mbsd.jp/Whitepaper/smtpi.pdf\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/rubysec/ruby-advisory-db/issues/215\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://hackerone.com/reports/137631\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.debian.org/security/2017/dsa-3966\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.mbsd.jp/Whitepaper/smtpi.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/rubysec/ruby-advisory-db/issues/215\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://hackerone.com/reports/137631\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2017/dsa-3966\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
}
}
SUSE-SU-2020:1570-1
Vulnerability from csaf_suse - Published: 2020-06-09 09:16 - Updated: 2020-06-09 09:16Summary
Security update for ruby2.1
Severity
Important
Notes
Title of the patch: Security update for ruby2.1
Description of the patch: This update for ruby2.1 fixes the following issues:
Security issues fixed:
- CVE-2015-9096: Fixed an SMTP command injection via CRLFsequences in a RCPT TO or MAIL FROM command (bsc#1043983).
- CVE-2016-7798: Fixed an IV Reuse in GCM Mode (bsc#1055265).
- CVE-2017-0898: Fixed a buffer underrun vulnerability in Kernel.sprintf (bsc#1058755).
- CVE-2017-0899: Fixed an issue with malicious gem specifications, insufficient sanitation when printing gem specifications could have included terminal characters (bsc#1056286).
- CVE-2017-0900: Fixed an issue with malicious gem specifications, the query command could have led to a denial of service attack against clients (bsc#1056286).
- CVE-2017-0901: Fixed an issue with malicious gem specifications, potentially overwriting arbitrary files on the client system (bsc#1056286).
- CVE-2017-0902: Fixed an issue with malicious gem specifications, that could have enabled MITM attacks against clients (bsc#1056286).
- CVE-2017-0903: Fixed an unsafe object deserialization vulnerability (bsc#1062452).
- CVE-2017-9228: Fixed a heap out-of-bounds write in bitset_set_range() during regex compilation (bsc#1069607).
- CVE-2017-9229: Fixed an invalid pointer dereference in left_adjust_char_head() in oniguruma (bsc#1069632).
- CVE-2017-10784: Fixed an escape sequence injection vulnerability in the Basic authentication of WEBrick (bsc#1058754).
- CVE-2017-14033: Fixed a buffer underrun vulnerability in OpenSSL ASN1 decode (bsc#1058757).
- CVE-2017-14064: Fixed an arbitrary memory exposure during a JSON.generate call (bsc#1056782).
- CVE-2017-17405: Fixed a command injection vulnerability in Net::FTP (bsc#1073002).
- CVE-2017-17742: Fixed an HTTP response splitting issue in WEBrick (bsc#1087434).
- CVE-2017-17790: Fixed a command injection in lib/resolv.rb:lazy_initialize() (bsc#1078782).
- CVE-2018-6914: Fixed an unintentional file and directory creation with directory traversal in tempfile and tmpdir (bsc#1087441).
- CVE-2018-8777: Fixed a potential DoS caused by large requests in WEBrick (bsc#1087436).
- CVE-2018-8778: Fixed a buffer under-read in String#unpack (bsc#1087433).
- CVE-2018-8779: Fixed an unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket (bsc#1087440).
- CVE-2018-8780: Fixed an unintentional directory traversal by poisoned NUL byte in Dir (bsc#1087437).
- CVE-2018-16395: Fixed an issue with OpenSSL::X509::Name equality checking (bsc#1112530).
- CVE-2018-16396: Fixed an issue with tainted string handling, where the flag was not propagated in Array#pack and String#unpack with some directives (bsc#1112532).
- CVE-2018-1000073: Fixed a path traversal issue (bsc#1082007).
- CVE-2018-1000074: Fixed an unsafe object deserialization vulnerability in gem owner, allowing arbitrary code execution with specially crafted YAML (bsc#1082008).
- CVE-2018-1000075: Fixed an infinite loop vulnerability due to negative size in tar header causes Denial of Service (bsc#1082014).
- CVE-2018-1000076: Fixed an improper verification of signatures in tarballs (bsc#1082009).
- CVE-2018-1000077: Fixed an improper URL validation in the homepage attribute of ruby gems (bsc#1082010).
- CVE-2018-1000078: Fixed a XSS vulnerability in the homepage attribute when displayed via gem server (bsc#1082011).
- CVE-2018-1000079: Fixed a path traversal issue during gem installation allows to write to arbitrary filesystem locations (bsc#1082058).
- CVE-2019-8320: Fixed a directory traversal issue when decompressing tar files (bsc#1130627).
- CVE-2019-8321: Fixed an escape sequence injection vulnerability in verbose (bsc#1130623).
- CVE-2019-8322: Fixed an escape sequence injection vulnerability in gem owner (bsc#1130622).
- CVE-2019-8323: Fixed an escape sequence injection vulnerability in API response handling (bsc#1130620).
- CVE-2019-8324: Fixed an issue with malicious gems that may have led to arbitrary code execution (bsc#1130617).
- CVE-2019-8325: Fixed an escape sequence injection vulnerability in errors (bsc#1130611).
- CVE-2019-15845: Fixed a NUL injection vulnerability in File.fnmatch and File.fnmatch? (bsc#1152994).
- CVE-2019-16201: Fixed a regular expression denial of service vulnerability in WEBrick's digest access authentication (bsc#1152995).
- CVE-2019-16254: Fixed an HTTP response splitting vulnerability in WEBrick (bsc#1152992).
- CVE-2019-16255: Fixed a code injection vulnerability in Shell#[] and Shell#test (bsc#1152990).
- CVE-2020-10663: Fixed an unsafe object creation vulnerability in JSON (bsc#1171517).
Non-security issue fixed:
- Add conflicts to libruby to make sure ruby and ruby-stdlib are also updated when libruby is updated (bsc#1048072).
Also yast2-ruby-bindings on SLES 12 SP2 LTSS was updated to handle the updated ruby interpreter. (bsc#1172275)
Patchnames: HPE-Helion-OpenStack-8-2020-1570,SUSE-2020-1570,SUSE-OpenStack-Cloud-7-2020-1570,SUSE-OpenStack-Cloud-8-2020-1570,SUSE-OpenStack-Cloud-Crowbar-8-2020-1570,SUSE-SLE-SAP-12-SP2-2020-1570,SUSE-SLE-SAP-12-SP3-2020-1570,SUSE-SLE-SDK-12-SP4-2020-1570,SUSE-SLE-SDK-12-SP5-2020-1570,SUSE-SLE-SERVER-12-SP2-2020-1570,SUSE-SLE-SERVER-12-SP2-BCL-2020-1570,SUSE-SLE-SERVER-12-SP3-2020-1570,SUSE-SLE-SERVER-12-SP3-BCL-2020-1570,SUSE-SLE-SERVER-12-SP4-2020-1570,SUSE-SLE-SERVER-12-SP5-2020-1570,SUSE-Storage-5-2020-1570
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
9.8 (Critical)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
8.3 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.7 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.3 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.4 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
4.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
5.1 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.5 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
6.8 (Medium)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.4 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.8 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
7.5 (High)
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Vendor Fix
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
References
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for ruby2.1",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for ruby2.1 fixes the following issues:\n\nSecurity issues fixed:\n\n- CVE-2015-9096: Fixed an SMTP command injection via CRLFsequences in a RCPT TO or MAIL FROM command (bsc#1043983).\n- CVE-2016-7798: Fixed an IV Reuse in GCM Mode (bsc#1055265).\n- CVE-2017-0898: Fixed a buffer underrun vulnerability in Kernel.sprintf (bsc#1058755).\n- CVE-2017-0899: Fixed an issue with malicious gem specifications, insufficient sanitation when printing gem specifications could have included terminal characters (bsc#1056286).\n- CVE-2017-0900: Fixed an issue with malicious gem specifications, the query command could have led to a denial of service attack against clients (bsc#1056286).\n- CVE-2017-0901: Fixed an issue with malicious gem specifications, potentially overwriting arbitrary files on the client system (bsc#1056286).\n- CVE-2017-0902: Fixed an issue with malicious gem specifications, that could have enabled MITM attacks against clients (bsc#1056286).\n- CVE-2017-0903: Fixed an unsafe object deserialization vulnerability (bsc#1062452).\n- CVE-2017-9228: Fixed a heap out-of-bounds write in bitset_set_range() during regex compilation (bsc#1069607).\n- CVE-2017-9229: Fixed an invalid pointer dereference in left_adjust_char_head() in oniguruma (bsc#1069632).\n- CVE-2017-10784: Fixed an escape sequence injection vulnerability in the Basic authentication of WEBrick (bsc#1058754).\n- CVE-2017-14033: Fixed a buffer underrun vulnerability in OpenSSL ASN1 decode (bsc#1058757).\n- CVE-2017-14064: Fixed an arbitrary memory exposure during a JSON.generate call (bsc#1056782).\n- CVE-2017-17405: Fixed a command injection vulnerability in Net::FTP (bsc#1073002).\n- CVE-2017-17742: Fixed an HTTP response splitting issue in WEBrick (bsc#1087434).\n- CVE-2017-17790: Fixed a command injection in lib/resolv.rb:lazy_initialize() (bsc#1078782).\n- CVE-2018-6914: Fixed an unintentional file and directory creation with directory traversal in tempfile and tmpdir (bsc#1087441).\n- CVE-2018-8777: Fixed a potential DoS caused by large requests in WEBrick (bsc#1087436).\n- CVE-2018-8778: Fixed a buffer under-read in String#unpack (bsc#1087433).\n- CVE-2018-8779: Fixed an unintentional socket creation by poisoned NUL byte in UNIXServer and UNIXSocket (bsc#1087440).\n- CVE-2018-8780: Fixed an unintentional directory traversal by poisoned NUL byte in Dir (bsc#1087437).\n- CVE-2018-16395: Fixed an issue with OpenSSL::X509::Name equality checking (bsc#1112530).\n- CVE-2018-16396: Fixed an issue with tainted string handling, where the flag was not propagated in Array#pack and String#unpack with some directives (bsc#1112532).\n- CVE-2018-1000073: Fixed a path traversal issue (bsc#1082007).\n- CVE-2018-1000074: Fixed an unsafe object deserialization vulnerability in gem owner, allowing arbitrary code execution with specially crafted YAML (bsc#1082008).\n- CVE-2018-1000075: Fixed an infinite loop vulnerability due to negative size in tar header causes Denial of Service (bsc#1082014).\n- CVE-2018-1000076: Fixed an improper verification of signatures in tarballs (bsc#1082009).\n- CVE-2018-1000077: Fixed an improper URL validation in the homepage attribute of ruby gems (bsc#1082010).\n- CVE-2018-1000078: Fixed a XSS vulnerability in the homepage attribute when displayed via gem server (bsc#1082011).\n- CVE-2018-1000079: Fixed a path traversal issue during gem installation allows to write to arbitrary filesystem locations (bsc#1082058).\n- CVE-2019-8320: Fixed a directory traversal issue when decompressing tar files (bsc#1130627).\n- CVE-2019-8321: Fixed an escape sequence injection vulnerability in verbose (bsc#1130623).\n- CVE-2019-8322: Fixed an escape sequence injection vulnerability in gem owner (bsc#1130622).\n- CVE-2019-8323: Fixed an escape sequence injection vulnerability in API response handling (bsc#1130620).\n- CVE-2019-8324: Fixed an issue with malicious gems that may have led to arbitrary code execution (bsc#1130617).\n- CVE-2019-8325: Fixed an escape sequence injection vulnerability in errors (bsc#1130611).\n- CVE-2019-15845: Fixed a NUL injection vulnerability in File.fnmatch and File.fnmatch? (bsc#1152994).\n- CVE-2019-16201: Fixed a regular expression denial of service vulnerability in WEBrick\u0027s digest access authentication (bsc#1152995).\n- CVE-2019-16254: Fixed an HTTP response splitting vulnerability in WEBrick (bsc#1152992).\n- CVE-2019-16255: Fixed a code injection vulnerability in Shell#[] and Shell#test (bsc#1152990).\n- CVE-2020-10663: Fixed an unsafe object creation vulnerability in JSON (bsc#1171517).\n\nNon-security issue fixed:\n\n- Add conflicts to libruby to make sure ruby and ruby-stdlib are also updated when libruby is updated (bsc#1048072).\n\nAlso yast2-ruby-bindings on SLES 12 SP2 LTSS was updated to handle the updated ruby interpreter. (bsc#1172275)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "HPE-Helion-OpenStack-8-2020-1570,SUSE-2020-1570,SUSE-OpenStack-Cloud-7-2020-1570,SUSE-OpenStack-Cloud-8-2020-1570,SUSE-OpenStack-Cloud-Crowbar-8-2020-1570,SUSE-SLE-SAP-12-SP2-2020-1570,SUSE-SLE-SAP-12-SP3-2020-1570,SUSE-SLE-SDK-12-SP4-2020-1570,SUSE-SLE-SDK-12-SP5-2020-1570,SUSE-SLE-SERVER-12-SP2-2020-1570,SUSE-SLE-SERVER-12-SP2-BCL-2020-1570,SUSE-SLE-SERVER-12-SP3-2020-1570,SUSE-SLE-SERVER-12-SP3-BCL-2020-1570,SUSE-SLE-SERVER-12-SP4-2020-1570,SUSE-SLE-SERVER-12-SP5-2020-1570,SUSE-Storage-5-2020-1570",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2020_1570-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2020:1570-1",
"url": "https://www.suse.com/support/update/announcement/2020/suse-su-20201570-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2020:1570-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2020-June/006905.html"
},
{
"category": "self",
"summary": "SUSE Bug 1043983",
"url": "https://bugzilla.suse.com/1043983"
},
{
"category": "self",
"summary": "SUSE Bug 1048072",
"url": "https://bugzilla.suse.com/1048072"
},
{
"category": "self",
"summary": "SUSE Bug 1055265",
"url": "https://bugzilla.suse.com/1055265"
},
{
"category": "self",
"summary": "SUSE Bug 1056286",
"url": "https://bugzilla.suse.com/1056286"
},
{
"category": "self",
"summary": "SUSE Bug 1056782",
"url": "https://bugzilla.suse.com/1056782"
},
{
"category": "self",
"summary": "SUSE Bug 1058754",
"url": "https://bugzilla.suse.com/1058754"
},
{
"category": "self",
"summary": "SUSE Bug 1058755",
"url": "https://bugzilla.suse.com/1058755"
},
{
"category": "self",
"summary": "SUSE Bug 1058757",
"url": "https://bugzilla.suse.com/1058757"
},
{
"category": "self",
"summary": "SUSE Bug 1062452",
"url": "https://bugzilla.suse.com/1062452"
},
{
"category": "self",
"summary": "SUSE Bug 1069607",
"url": "https://bugzilla.suse.com/1069607"
},
{
"category": "self",
"summary": "SUSE Bug 1069632",
"url": "https://bugzilla.suse.com/1069632"
},
{
"category": "self",
"summary": "SUSE Bug 1073002",
"url": "https://bugzilla.suse.com/1073002"
},
{
"category": "self",
"summary": "SUSE Bug 1078782",
"url": "https://bugzilla.suse.com/1078782"
},
{
"category": "self",
"summary": "SUSE Bug 1082007",
"url": "https://bugzilla.suse.com/1082007"
},
{
"category": "self",
"summary": "SUSE Bug 1082008",
"url": "https://bugzilla.suse.com/1082008"
},
{
"category": "self",
"summary": "SUSE Bug 1082009",
"url": "https://bugzilla.suse.com/1082009"
},
{
"category": "self",
"summary": "SUSE Bug 1082010",
"url": "https://bugzilla.suse.com/1082010"
},
{
"category": "self",
"summary": "SUSE Bug 1082011",
"url": "https://bugzilla.suse.com/1082011"
},
{
"category": "self",
"summary": "SUSE Bug 1082014",
"url": "https://bugzilla.suse.com/1082014"
},
{
"category": "self",
"summary": "SUSE Bug 1082058",
"url": "https://bugzilla.suse.com/1082058"
},
{
"category": "self",
"summary": "SUSE Bug 1087433",
"url": "https://bugzilla.suse.com/1087433"
},
{
"category": "self",
"summary": "SUSE Bug 1087434",
"url": "https://bugzilla.suse.com/1087434"
},
{
"category": "self",
"summary": "SUSE Bug 1087436",
"url": "https://bugzilla.suse.com/1087436"
},
{
"category": "self",
"summary": "SUSE Bug 1087437",
"url": "https://bugzilla.suse.com/1087437"
},
{
"category": "self",
"summary": "SUSE Bug 1087440",
"url": "https://bugzilla.suse.com/1087440"
},
{
"category": "self",
"summary": "SUSE Bug 1087441",
"url": "https://bugzilla.suse.com/1087441"
},
{
"category": "self",
"summary": "SUSE Bug 1112530",
"url": "https://bugzilla.suse.com/1112530"
},
{
"category": "self",
"summary": "SUSE Bug 1112532",
"url": "https://bugzilla.suse.com/1112532"
},
{
"category": "self",
"summary": "SUSE Bug 1130611",
"url": "https://bugzilla.suse.com/1130611"
},
{
"category": "self",
"summary": "SUSE Bug 1130617",
"url": "https://bugzilla.suse.com/1130617"
},
{
"category": "self",
"summary": "SUSE Bug 1130620",
"url": "https://bugzilla.suse.com/1130620"
},
{
"category": "self",
"summary": "SUSE Bug 1130622",
"url": "https://bugzilla.suse.com/1130622"
},
{
"category": "self",
"summary": "SUSE Bug 1130623",
"url": "https://bugzilla.suse.com/1130623"
},
{
"category": "self",
"summary": "SUSE Bug 1130627",
"url": "https://bugzilla.suse.com/1130627"
},
{
"category": "self",
"summary": "SUSE Bug 1152990",
"url": "https://bugzilla.suse.com/1152990"
},
{
"category": "self",
"summary": "SUSE Bug 1152992",
"url": "https://bugzilla.suse.com/1152992"
},
{
"category": "self",
"summary": "SUSE Bug 1152994",
"url": "https://bugzilla.suse.com/1152994"
},
{
"category": "self",
"summary": "SUSE Bug 1152995",
"url": "https://bugzilla.suse.com/1152995"
},
{
"category": "self",
"summary": "SUSE Bug 1171517",
"url": "https://bugzilla.suse.com/1171517"
},
{
"category": "self",
"summary": "SUSE Bug 1172275",
"url": "https://bugzilla.suse.com/1172275"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-9096 page",
"url": "https://www.suse.com/security/cve/CVE-2015-9096/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2339 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-7798 page",
"url": "https://www.suse.com/security/cve/CVE-2016-7798/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-0898 page",
"url": "https://www.suse.com/security/cve/CVE-2017-0898/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-0899 page",
"url": "https://www.suse.com/security/cve/CVE-2017-0899/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-0900 page",
"url": "https://www.suse.com/security/cve/CVE-2017-0900/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-0901 page",
"url": "https://www.suse.com/security/cve/CVE-2017-0901/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-0902 page",
"url": "https://www.suse.com/security/cve/CVE-2017-0902/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-0903 page",
"url": "https://www.suse.com/security/cve/CVE-2017-0903/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-10784 page",
"url": "https://www.suse.com/security/cve/CVE-2017-10784/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14033 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14033/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-14064 page",
"url": "https://www.suse.com/security/cve/CVE-2017-14064/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17405 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17405/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17742 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17742/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-17790 page",
"url": "https://www.suse.com/security/cve/CVE-2017-17790/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-9228 page",
"url": "https://www.suse.com/security/cve/CVE-2017-9228/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-9229 page",
"url": "https://www.suse.com/security/cve/CVE-2017-9229/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1000073 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1000073/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1000074 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1000074/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1000075 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1000075/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1000076 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1000076/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1000077 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1000077/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1000078 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1000078/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1000079 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1000079/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16395 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16395/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16396 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16396/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-6914 page",
"url": "https://www.suse.com/security/cve/CVE-2018-6914/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-8777 page",
"url": "https://www.suse.com/security/cve/CVE-2018-8777/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-8778 page",
"url": "https://www.suse.com/security/cve/CVE-2018-8778/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-8779 page",
"url": "https://www.suse.com/security/cve/CVE-2018-8779/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-8780 page",
"url": "https://www.suse.com/security/cve/CVE-2018-8780/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-15845 page",
"url": "https://www.suse.com/security/cve/CVE-2019-15845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16201 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16201/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16254 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16254/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16255 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16255/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8320 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8320/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8321 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8321/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8322 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8322/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8323 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8323/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8324 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8324/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-8325 page",
"url": "https://www.suse.com/security/cve/CVE-2019-8325/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-10663 page",
"url": "https://www.suse.com/security/cve/CVE-2020-10663/"
}
],
"title": "Security update for ruby2.1",
"tracking": {
"current_release_date": "2020-06-09T09:16:12Z",
"generator": {
"date": "2020-06-09T09:16:12Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2020:1570-1",
"initial_release_date": "2020-06-09T09:16:12Z",
"revision_history": [
{
"date": "2020-06-09T09:16:12Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"product": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"product_id": "libruby2_1-2_1-2.1.9-19.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-2.1.9-19.3.2.aarch64",
"product": {
"name": "ruby2.1-2.1.9-19.3.2.aarch64",
"product_id": "ruby2.1-2.1.9-19.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-2.1.9-19.3.2.aarch64",
"product": {
"name": "ruby2.1-devel-2.1.9-19.3.2.aarch64",
"product_id": "ruby2.1-devel-2.1.9-19.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.aarch64",
"product": {
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.aarch64",
"product_id": "ruby2.1-devel-extra-2.1.9-19.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-doc-2.1.9-19.3.2.aarch64",
"product": {
"name": "ruby2.1-doc-2.1.9-19.3.2.aarch64",
"product_id": "ruby2.1-doc-2.1.9-19.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"product": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"product_id": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64"
}
},
{
"category": "product_version",
"name": "yast2-ruby-bindings-3.1.53-9.8.1.aarch64",
"product": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.aarch64",
"product_id": "yast2-ruby-bindings-3.1.53-9.8.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libruby2_1-2_1-2.1.9-19.3.2.i586",
"product": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.i586",
"product_id": "libruby2_1-2_1-2.1.9-19.3.2.i586"
}
},
{
"category": "product_version",
"name": "ruby2.1-2.1.9-19.3.2.i586",
"product": {
"name": "ruby2.1-2.1.9-19.3.2.i586",
"product_id": "ruby2.1-2.1.9-19.3.2.i586"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-2.1.9-19.3.2.i586",
"product": {
"name": "ruby2.1-devel-2.1.9-19.3.2.i586",
"product_id": "ruby2.1-devel-2.1.9-19.3.2.i586"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.i586",
"product": {
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.i586",
"product_id": "ruby2.1-devel-extra-2.1.9-19.3.2.i586"
}
},
{
"category": "product_version",
"name": "ruby2.1-doc-2.1.9-19.3.2.i586",
"product": {
"name": "ruby2.1-doc-2.1.9-19.3.2.i586",
"product_id": "ruby2.1-doc-2.1.9-19.3.2.i586"
}
},
{
"category": "product_version",
"name": "ruby2.1-stdlib-2.1.9-19.3.2.i586",
"product": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.i586",
"product_id": "ruby2.1-stdlib-2.1.9-19.3.2.i586"
}
},
{
"category": "product_version",
"name": "yast2-ruby-bindings-3.1.53-9.8.1.i586",
"product": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.i586",
"product_id": "yast2-ruby-bindings-3.1.53-9.8.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby2.1-doc-ri-2.1.9-19.3.2.noarch",
"product": {
"name": "ruby2.1-doc-ri-2.1.9-19.3.2.noarch",
"product_id": "ruby2.1-doc-ri-2.1.9-19.3.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"product": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"product_id": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-2.1.9-19.3.2.ppc64le",
"product": {
"name": "ruby2.1-2.1.9-19.3.2.ppc64le",
"product_id": "ruby2.1-2.1.9-19.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"product": {
"name": "ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"product_id": "ruby2.1-devel-2.1.9-19.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.ppc64le",
"product": {
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.ppc64le",
"product_id": "ruby2.1-devel-extra-2.1.9-19.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-doc-2.1.9-19.3.2.ppc64le",
"product": {
"name": "ruby2.1-doc-2.1.9-19.3.2.ppc64le",
"product_id": "ruby2.1-doc-2.1.9-19.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"product": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"product_id": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"product": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"product_id": "yast2-ruby-bindings-3.1.53-9.8.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390",
"product": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390",
"product_id": "libruby2_1-2_1-2.1.9-19.3.2.s390"
}
},
{
"category": "product_version",
"name": "ruby2.1-2.1.9-19.3.2.s390",
"product": {
"name": "ruby2.1-2.1.9-19.3.2.s390",
"product_id": "ruby2.1-2.1.9-19.3.2.s390"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-2.1.9-19.3.2.s390",
"product": {
"name": "ruby2.1-devel-2.1.9-19.3.2.s390",
"product_id": "ruby2.1-devel-2.1.9-19.3.2.s390"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.s390",
"product": {
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.s390",
"product_id": "ruby2.1-devel-extra-2.1.9-19.3.2.s390"
}
},
{
"category": "product_version",
"name": "ruby2.1-doc-2.1.9-19.3.2.s390",
"product": {
"name": "ruby2.1-doc-2.1.9-19.3.2.s390",
"product_id": "ruby2.1-doc-2.1.9-19.3.2.s390"
}
},
{
"category": "product_version",
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390",
"product": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390",
"product_id": "ruby2.1-stdlib-2.1.9-19.3.2.s390"
}
},
{
"category": "product_version",
"name": "yast2-ruby-bindings-3.1.53-9.8.1.s390",
"product": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.s390",
"product_id": "yast2-ruby-bindings-3.1.53-9.8.1.s390"
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390x",
"product": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390x",
"product_id": "libruby2_1-2_1-2.1.9-19.3.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-2.1.9-19.3.2.s390x",
"product": {
"name": "ruby2.1-2.1.9-19.3.2.s390x",
"product_id": "ruby2.1-2.1.9-19.3.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-2.1.9-19.3.2.s390x",
"product": {
"name": "ruby2.1-devel-2.1.9-19.3.2.s390x",
"product_id": "ruby2.1-devel-2.1.9-19.3.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.s390x",
"product": {
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.s390x",
"product_id": "ruby2.1-devel-extra-2.1.9-19.3.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-doc-2.1.9-19.3.2.s390x",
"product": {
"name": "ruby2.1-doc-2.1.9-19.3.2.s390x",
"product_id": "ruby2.1-doc-2.1.9-19.3.2.s390x"
}
},
{
"category": "product_version",
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"product": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"product_id": "ruby2.1-stdlib-2.1.9-19.3.2.s390x"
}
},
{
"category": "product_version",
"name": "yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"product": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"product_id": "yast2-ruby-bindings-3.1.53-9.8.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"product": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"product_id": "libruby2_1-2_1-2.1.9-19.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-2.1.9-19.3.2.x86_64",
"product": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64",
"product_id": "ruby2.1-2.1.9-19.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"product": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"product_id": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-2.1.9-19.3.2.x86_64",
"product": {
"name": "ruby2.1-devel-2.1.9-19.3.2.x86_64",
"product_id": "ruby2.1-devel-2.1.9-19.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.x86_64",
"product": {
"name": "ruby2.1-devel-extra-2.1.9-19.3.2.x86_64",
"product_id": "ruby2.1-devel-extra-2.1.9-19.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "ruby2.1-doc-2.1.9-19.3.2.x86_64",
"product": {
"name": "ruby2.1-doc-2.1.9-19.3.2.x86_64",
"product_id": "ruby2.1-doc-2.1.9-19.3.2.x86_64"
}
},
{
"category": "product_version",
"name": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"product": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"product_id": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "HPE Helion OpenStack 8",
"product": {
"name": "HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:hpe-helion-openstack:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 7",
"product": {
"name": "SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:7"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud 8",
"product": {
"name": "SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud:8"
}
}
},
{
"category": "product_name",
"name": "SUSE OpenStack Cloud Crowbar 8",
"product": {
"name": "SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse-openstack-cloud-crowbar:8"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-bcl:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Enterprise Storage 5",
"product": {
"name": "SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:ses:5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of HPE Helion OpenStack 8",
"product_id": "HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "HPE Helion OpenStack 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.s390x as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x"
},
"product_reference": "yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64 as component of SUSE OpenStack Cloud 7",
"product_id": "SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64"
},
"product_reference": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE OpenStack Cloud 8",
"product_id": "SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE OpenStack Cloud Crowbar 8",
"product_id": "SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE OpenStack Cloud Crowbar 8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le"
},
"product_reference": "yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP2",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64"
},
"product_reference": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-devel-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-devel-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-devel-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-devel-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-devel-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-devel-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-devel-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-devel-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-devel-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-devel-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-devel-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-devel-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-devel-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP5",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-devel-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.ppc64le as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le"
},
"product_reference": "yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.s390x as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x"
},
"product_reference": "yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64"
},
"product_reference": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP2-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64"
},
"product_reference": "yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP2-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-LTSS",
"product_id": "SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-LTSS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP3-BCL",
"product_id": "SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3-BCL"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.s390x as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.aarch64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libruby2_1-2_1-2.1.9-19.3.2.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64"
},
"product_reference": "libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.aarch64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-2.1.9-19.3.2.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64 as component of SUSE Enterprise Storage 5",
"product_id": "SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
},
"product_reference": "ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"relates_to_product_reference": "SUSE Enterprise Storage 5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-9096",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-9096"
}
],
"notes": [
{
"category": "general",
"text": "Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-9096",
"url": "https://www.suse.com/security/cve/CVE-2015-9096"
},
{
"category": "external",
"summary": "SUSE Bug 1043983 for CVE-2015-9096",
"url": "https://bugzilla.suse.com/1043983"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2015-9096"
},
{
"cve": "CVE-2016-2339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2339"
}
],
"notes": [
{
"category": "general",
"text": "An exploitable heap overflow vulnerability exists in the Fiddle::Function.new \"initialize\" function functionality of Ruby. In Fiddle::Function.new \"initialize\" heap buffer \"arg_types\" allocation is made based on args array length. Specially constructed object passed as element of args array can increase this array size after mentioned allocation and cause heap overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2339",
"url": "https://www.suse.com/security/cve/CVE-2016-2339"
},
{
"category": "external",
"summary": "SUSE Bug 1018808 for CVE-2016-2339",
"url": "https://bugzilla.suse.com/1018808"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2016-2339"
},
{
"cve": "CVE-2016-7798",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-7798"
}
],
"notes": [
{
"category": "general",
"text": "The openssl gem for Ruby uses the same initialization vector (IV) in GCM Mode (aes-*-gcm) when the IV is set before the key, which makes it easier for context-dependent attackers to bypass the encryption protection mechanism.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-7798",
"url": "https://www.suse.com/security/cve/CVE-2016-7798"
},
{
"category": "external",
"summary": "SUSE Bug 1055265 for CVE-2016-7798",
"url": "https://bugzilla.suse.com/1055265"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2016-7798"
},
{
"cve": "CVE-2017-0898",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-0898"
}
],
"notes": [
{
"category": "general",
"text": "Ruby before 2.4.2, 2.3.5, and 2.2.8 is vulnerable to a malicious format string which contains a precious specifier (*) with a huge minus value. Such situation can lead to a buffer overrun, resulting in a heap memory corruption or an information disclosure from the heap.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-0898",
"url": "https://www.suse.com/security/cve/CVE-2017-0898"
},
{
"category": "external",
"summary": "SUSE Bug 1058755 for CVE-2017-0898",
"url": "https://bugzilla.suse.com/1058755"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-0898"
},
{
"cve": "CVE-2017-0899",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-0899"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications that include terminal escape characters. Printing the gem specification would execute terminal escape sequences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-0899",
"url": "https://www.suse.com/security/cve/CVE-2017-0899"
},
{
"category": "external",
"summary": "SUSE Bug 1056286 for CVE-2017-0899",
"url": "https://bugzilla.suse.com/1056286"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2017-0899"
},
{
"cve": "CVE-2017-0900",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-0900"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications to cause a denial of service attack against RubyGems clients who have issued a `query` command.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-0900",
"url": "https://www.suse.com/security/cve/CVE-2017-0900"
},
{
"category": "external",
"summary": "SUSE Bug 1056286 for CVE-2017-0900",
"url": "https://bugzilla.suse.com/1056286"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2017-0900"
},
{
"cve": "CVE-2017-0901",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-0901"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version 2.6.12 and earlier fails to validate specification names, allowing a maliciously crafted gem to potentially overwrite any file on the filesystem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-0901",
"url": "https://www.suse.com/security/cve/CVE-2017-0901"
},
{
"category": "external",
"summary": "SUSE Bug 1056286 for CVE-2017-0901",
"url": "https://bugzilla.suse.com/1056286"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2017-0901"
},
{
"cve": "CVE-2017-0902",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-0902"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version 2.6.12 and earlier is vulnerable to a DNS hijacking vulnerability that allows a MITM attacker to force the RubyGems client to download and install gems from a server that the attacker controls.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-0902",
"url": "https://www.suse.com/security/cve/CVE-2017-0902"
},
{
"category": "external",
"summary": "SUSE Bug 1056286 for CVE-2017-0902",
"url": "https://bugzilla.suse.com/1056286"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2017-0902"
},
{
"cve": "CVE-2017-0903",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-0903"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems versions between 2.0.0 and 2.6.13 are vulnerable to a possible remote code execution vulnerability. YAML deserialization of gem specifications can bypass class white lists. Specially crafted serialized objects can possibly be used to escalate to remote code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-0903",
"url": "https://www.suse.com/security/cve/CVE-2017-0903"
},
{
"category": "external",
"summary": "SUSE Bug 1062452 for CVE-2017-0903",
"url": "https://bugzilla.suse.com/1062452"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-0903"
},
{
"cve": "CVE-2017-10784",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-10784"
}
],
"notes": [
{
"category": "general",
"text": "The Basic authentication code in WEBrick library in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows remote attackers to inject terminal emulator escape sequences into its log and possibly execute arbitrary commands via a crafted user name.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-10784",
"url": "https://www.suse.com/security/cve/CVE-2017-10784"
},
{
"category": "external",
"summary": "SUSE Bug 1058754 for CVE-2017-10784",
"url": "https://bugzilla.suse.com/1058754"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-10784"
},
{
"cve": "CVE-2017-14033",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14033"
}
],
"notes": [
{
"category": "general",
"text": "The decode method in the OpenSSL::ASN1 module in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows attackers to cause a denial of service (interpreter crash) via a crafted string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14033",
"url": "https://www.suse.com/security/cve/CVE-2017-14033"
},
{
"category": "external",
"summary": "SUSE Bug 1058757 for CVE-2017-14033",
"url": "https://bugzilla.suse.com/1058757"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-14033"
},
{
"cve": "CVE-2017-14064",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-14064"
}
],
"notes": [
{
"category": "general",
"text": "Ruby through 2.2.7, 2.3.x through 2.3.4, and 2.4.x through 2.4.1 can expose arbitrary memory during a JSON.generate call. The issues lies in using strdup in ext/json/ext/generator/generator.c, which will stop after encountering a \u0027\\0\u0027 byte, returning a pointer to a string of length zero, which is not the length stored in space_len.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-14064",
"url": "https://www.suse.com/security/cve/CVE-2017-14064"
},
{
"category": "external",
"summary": "SUSE Bug 1056782 for CVE-2017-14064",
"url": "https://bugzilla.suse.com/1056782"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-14064"
},
{
"cve": "CVE-2017-17405",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17405"
}
],
"notes": [
{
"category": "general",
"text": "Ruby before 2.4.3 allows Net::FTP command injection. Net::FTP#get, getbinaryfile, gettextfile, put, putbinaryfile, and puttextfile use Kernel#open to open a local file. If the localfile argument starts with the \"|\" pipe character, the command following the pipe character is executed. The default value of localfile is File.basename(remotefile), so malicious FTP servers could cause arbitrary command execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17405",
"url": "https://www.suse.com/security/cve/CVE-2017-17405"
},
{
"category": "external",
"summary": "SUSE Bug 1073002 for CVE-2017-17405",
"url": "https://bugzilla.suse.com/1073002"
},
{
"category": "external",
"summary": "SUSE Bug 1078782 for CVE-2017-17405",
"url": "https://bugzilla.suse.com/1078782"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2017-17405"
},
{
"cve": "CVE-2017-17742",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17742"
}
],
"notes": [
{
"category": "general",
"text": "Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1 allows an HTTP Response Splitting attack. An attacker can inject a crafted key and value into an HTTP response for the HTTP server of WEBrick.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17742",
"url": "https://www.suse.com/security/cve/CVE-2017-17742"
},
{
"category": "external",
"summary": "SUSE Bug 1087434 for CVE-2017-17742",
"url": "https://bugzilla.suse.com/1087434"
},
{
"category": "external",
"summary": "SUSE Bug 1136906 for CVE-2017-17742",
"url": "https://bugzilla.suse.com/1136906"
},
{
"category": "external",
"summary": "SUSE Bug 1152992 for CVE-2017-17742",
"url": "https://bugzilla.suse.com/1152992"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-17742"
},
{
"cve": "CVE-2017-17790",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-17790"
}
],
"notes": [
{
"category": "general",
"text": "The lazy_initialize function in lib/resolv.rb in Ruby through 2.4.3 uses Kernel#open, which might allow Command Injection attacks, as demonstrated by a Resolv::Hosts::new argument beginning with a \u0027|\u0027 character, a different vulnerability than CVE-2017-17405. NOTE: situations with untrusted input may be highly unlikely.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-17790",
"url": "https://www.suse.com/security/cve/CVE-2017-17790"
},
{
"category": "external",
"summary": "SUSE Bug 1073002 for CVE-2017-17790",
"url": "https://bugzilla.suse.com/1073002"
},
{
"category": "external",
"summary": "SUSE Bug 1078782 for CVE-2017-17790",
"url": "https://bugzilla.suse.com/1078782"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-17790"
},
{
"cve": "CVE-2017-9228",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-9228"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write occurs in bitset_set_range() during regular expression compilation due to an uninitialized variable from an incorrect state transition. An incorrect state transition in parse_char_class() could create an execution path that leaves a critical local variable uninitialized until it\u0027s used as an index, resulting in an out-of-bounds write memory corruption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-9228",
"url": "https://www.suse.com/security/cve/CVE-2017-9228"
},
{
"category": "external",
"summary": "SUSE Bug 1068376 for CVE-2017-9228",
"url": "https://bugzilla.suse.com/1068376"
},
{
"category": "external",
"summary": "SUSE Bug 1069606 for CVE-2017-9228",
"url": "https://bugzilla.suse.com/1069606"
},
{
"category": "external",
"summary": "SUSE Bug 1069607 for CVE-2017-9228",
"url": "https://bugzilla.suse.com/1069607"
},
{
"category": "external",
"summary": "SUSE Bug 1076391 for CVE-2017-9228",
"url": "https://bugzilla.suse.com/1076391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-9228"
},
{
"cve": "CVE-2017-9229",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-9229"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A SIGSEGV occurs in left_adjust_char_head() during regular expression compilation. Invalid handling of reg-\u003edmax in forward_search_range() could result in an invalid pointer dereference, normally as an immediate denial-of-service condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-9229",
"url": "https://www.suse.com/security/cve/CVE-2017-9229"
},
{
"category": "external",
"summary": "SUSE Bug 1068376 for CVE-2017-9229",
"url": "https://bugzilla.suse.com/1068376"
},
{
"category": "external",
"summary": "SUSE Bug 1069631 for CVE-2017-9229",
"url": "https://bugzilla.suse.com/1069631"
},
{
"category": "external",
"summary": "SUSE Bug 1069632 for CVE-2017-9229",
"url": "https://bugzilla.suse.com/1069632"
},
{
"category": "external",
"summary": "SUSE Bug 1076391 for CVE-2017-9229",
"url": "https://bugzilla.suse.com/1076391"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2017-9229"
},
{
"cve": "CVE-2018-1000073",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1000073"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Directory Traversal vulnerability in install_location function of package.rb that can result in path traversal when writing to a symlinked basedir outside of the root. This vulnerability appears to have been fixed in 2.7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1000073",
"url": "https://www.suse.com/security/cve/CVE-2018-1000073"
},
{
"category": "external",
"summary": "SUSE Bug 1082007 for CVE-2018-1000073",
"url": "https://bugzilla.suse.com/1082007"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-1000073"
},
{
"cve": "CVE-2018-1000074",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1000074"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Deserialization of Untrusted Data vulnerability in owner command that can result in code execution. This attack appear to be exploitable via victim must run the `gem owner` command on a gem with a specially crafted YAML file. This vulnerability appears to have been fixed in 2.7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1000074",
"url": "https://www.suse.com/security/cve/CVE-2018-1000074"
},
{
"category": "external",
"summary": "SUSE Bug 1082008 for CVE-2018-1000074",
"url": "https://bugzilla.suse.com/1082008"
},
{
"category": "external",
"summary": "SUSE Bug 1175764 for CVE-2018-1000074",
"url": "https://bugzilla.suse.com/1175764"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2018-1000074"
},
{
"cve": "CVE-2018-1000075",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1000075"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a infinite loop caused by negative size vulnerability in ruby gem package tar header that can result in a negative size could cause an infinite loop.. This vulnerability appears to have been fixed in 2.7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1000075",
"url": "https://www.suse.com/security/cve/CVE-2018-1000075"
},
{
"category": "external",
"summary": "SUSE Bug 1082014 for CVE-2018-1000075",
"url": "https://bugzilla.suse.com/1082014"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.3,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "low"
}
],
"title": "CVE-2018-1000075"
},
{
"cve": "CVE-2018-1000076",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1000076"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Improper Verification of Cryptographic Signature vulnerability in package.rb that can result in a mis-signed gem could be installed, as the tarball would contain multiple gem signatures.. This vulnerability appears to have been fixed in 2.7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1000076",
"url": "https://www.suse.com/security/cve/CVE-2018-1000076"
},
{
"category": "external",
"summary": "SUSE Bug 1082009 for CVE-2018-1000076",
"url": "https://bugzilla.suse.com/1082009"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-1000076"
},
{
"cve": "CVE-2018-1000077",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1000077"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Improper Input Validation vulnerability in ruby gems specification homepage attribute that can result in a malicious gem could set an invalid homepage URL. This vulnerability appears to have been fixed in 2.7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1000077",
"url": "https://www.suse.com/security/cve/CVE-2018-1000077"
},
{
"category": "external",
"summary": "SUSE Bug 1082010 for CVE-2018-1000077",
"url": "https://bugzilla.suse.com/1082010"
},
{
"category": "external",
"summary": "SUSE Bug 1183937 for CVE-2018-1000077",
"url": "https://bugzilla.suse.com/1183937"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-1000077"
},
{
"cve": "CVE-2018-1000078",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1000078"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Cross Site Scripting (XSS) vulnerability in gem server display of homepage attribute that can result in XSS. This attack appear to be exploitable via the victim must browse to a malicious gem on a vulnerable gem server. This vulnerability appears to have been fixed in 2.7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1000078",
"url": "https://www.suse.com/security/cve/CVE-2018-1000078"
},
{
"category": "external",
"summary": "SUSE Bug 1082011 for CVE-2018-1000078",
"url": "https://bugzilla.suse.com/1082011"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-1000078"
},
{
"cve": "CVE-2018-1000079",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1000079"
}
],
"notes": [
{
"category": "general",
"text": "RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a Directory Traversal vulnerability in gem installation that can result in the gem could write to arbitrary filesystem locations during installation. This attack appear to be exploitable via the victim must install a malicious gem. This vulnerability appears to have been fixed in 2.7.6.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1000079",
"url": "https://www.suse.com/security/cve/CVE-2018-1000079"
},
{
"category": "external",
"summary": "SUSE Bug 1082058 for CVE-2018-1000079",
"url": "https://bugzilla.suse.com/1082058"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-1000079"
},
{
"cve": "CVE-2018-16395",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16395"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the OpenSSL library in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. When two OpenSSL::X509::Name objects are compared using ==, depending on the ordering, non-equal objects may return true. When the first argument is one character longer than the second, or the second argument contains a character that is one less than a character in the same position of the first argument, the result of == will be true. This could be leveraged to create an illegitimate certificate that may be accepted as legitimate and then used in signing or encryption operations.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16395",
"url": "https://www.suse.com/security/cve/CVE-2018-16395"
},
{
"category": "external",
"summary": "SUSE Bug 1112530 for CVE-2018-16395",
"url": "https://bugzilla.suse.com/1112530"
},
{
"category": "external",
"summary": "SUSE Bug 1136906 for CVE-2018-16395",
"url": "https://bugzilla.suse.com/1136906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-16395"
},
{
"cve": "CVE-2018-16396",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16396"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16396",
"url": "https://www.suse.com/security/cve/CVE-2018-16396"
},
{
"category": "external",
"summary": "SUSE Bug 1112532 for CVE-2018-16396",
"url": "https://bugzilla.suse.com/1112532"
},
{
"category": "external",
"summary": "SUSE Bug 1136906 for CVE-2018-16396",
"url": "https://bugzilla.suse.com/1136906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:L",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-16396"
},
{
"cve": "CVE-2018-6914",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-6914"
}
],
"notes": [
{
"category": "general",
"text": "Directory traversal vulnerability in the Dir.mktmpdir method in the tmpdir library in Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1 might allow attackers to create arbitrary directories or files via a .. (dot dot) in the prefix argument.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-6914",
"url": "https://www.suse.com/security/cve/CVE-2018-6914"
},
{
"category": "external",
"summary": "SUSE Bug 1087441 for CVE-2018-6914",
"url": "https://bugzilla.suse.com/1087441"
},
{
"category": "external",
"summary": "SUSE Bug 1136906 for CVE-2018-6914",
"url": "https://bugzilla.suse.com/1136906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "low"
}
],
"title": "CVE-2018-6914"
},
{
"cve": "CVE-2018-8777",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-8777"
}
],
"notes": [
{
"category": "general",
"text": "In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, an attacker can pass a large HTTP request with a crafted header to WEBrick server or a crafted body to WEBrick server/handler and cause a denial of service (memory consumption).",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-8777",
"url": "https://www.suse.com/security/cve/CVE-2018-8777"
},
{
"category": "external",
"summary": "SUSE Bug 1087436 for CVE-2018-8777",
"url": "https://bugzilla.suse.com/1087436"
},
{
"category": "external",
"summary": "SUSE Bug 1136906 for CVE-2018-8777",
"url": "https://bugzilla.suse.com/1136906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2018-8777"
},
{
"cve": "CVE-2018-8778",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-8778"
}
],
"notes": [
{
"category": "general",
"text": "In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, an attacker controlling the unpacking format (similar to format string vulnerabilities) can trigger a buffer under-read in the String#unpack method, resulting in a massive and controlled information disclosure.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-8778",
"url": "https://www.suse.com/security/cve/CVE-2018-8778"
},
{
"category": "external",
"summary": "SUSE Bug 1087433 for CVE-2018-8778",
"url": "https://bugzilla.suse.com/1087433"
},
{
"category": "external",
"summary": "SUSE Bug 1136906 for CVE-2018-8778",
"url": "https://bugzilla.suse.com/1136906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2018-8778"
},
{
"cve": "CVE-2018-8779",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-8779"
}
],
"notes": [
{
"category": "general",
"text": "In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, the UNIXServer.open and UNIXSocket.open methods are not checked for null characters. It may be connected to an unintended socket.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-8779",
"url": "https://www.suse.com/security/cve/CVE-2018-8779"
},
{
"category": "external",
"summary": "SUSE Bug 1087440 for CVE-2018-8779",
"url": "https://bugzilla.suse.com/1087440"
},
{
"category": "external",
"summary": "SUSE Bug 1136906 for CVE-2018-8779",
"url": "https://bugzilla.suse.com/1136906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "low"
}
],
"title": "CVE-2018-8779"
},
{
"cve": "CVE-2018-8780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-8780"
}
],
"notes": [
{
"category": "general",
"text": "In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, the Dir.open, Dir.new, Dir.entries and Dir.empty? methods do not check NULL characters. When using the corresponding method, unintentional directory traversal may be performed.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-8780",
"url": "https://www.suse.com/security/cve/CVE-2018-8780"
},
{
"category": "external",
"summary": "SUSE Bug 1087437 for CVE-2018-8780",
"url": "https://bugzilla.suse.com/1087437"
},
{
"category": "external",
"summary": "SUSE Bug 1136906 for CVE-2018-8780",
"url": "https://bugzilla.suse.com/1136906"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "low"
}
],
"title": "CVE-2018-8780"
},
{
"cve": "CVE-2019-15845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-15845"
}
],
"notes": [
{
"category": "general",
"text": "Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 mishandles path checking within File.fnmatch functions.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-15845",
"url": "https://www.suse.com/security/cve/CVE-2019-15845"
},
{
"category": "external",
"summary": "SUSE Bug 1152994 for CVE-2019-15845",
"url": "https://bugzilla.suse.com/1152994"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2019-15845"
},
{
"cve": "CVE-2019-16201",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16201"
}
],
"notes": [
{
"category": "general",
"text": "WEBrick::HTTPAuth::DigestAuth in Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 has a regular expression Denial of Service cause by looping/backtracking. A victim must expose a WEBrick server that uses DigestAuth to the Internet or a untrusted network.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16201",
"url": "https://www.suse.com/security/cve/CVE-2019-16201"
},
{
"category": "external",
"summary": "SUSE Bug 1152995 for CVE-2019-16201",
"url": "https://bugzilla.suse.com/1152995"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2019-16201"
},
{
"cve": "CVE-2019-16254",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16254"
}
],
"notes": [
{
"category": "general",
"text": "Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients. NOTE: this issue exists because of an incomplete fix for CVE-2017-17742, which addressed the CRLF vector, but did not address an isolated CR or an isolated LF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16254",
"url": "https://www.suse.com/security/cve/CVE-2019-16254"
},
{
"category": "external",
"summary": "SUSE Bug 1152992 for CVE-2019-16254",
"url": "https://bugzilla.suse.com/1152992"
},
{
"category": "external",
"summary": "SUSE Bug 1165402 for CVE-2019-16254",
"url": "https://bugzilla.suse.com/1165402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2019-16254"
},
{
"cve": "CVE-2019-16255",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16255"
}
],
"notes": [
{
"category": "general",
"text": "Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows code injection if the first argument (aka the \"command\" argument) to Shell#[] or Shell#test in lib/shell.rb is untrusted data. An attacker can exploit this to call an arbitrary Ruby method.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16255",
"url": "https://www.suse.com/security/cve/CVE-2019-16255"
},
{
"category": "external",
"summary": "SUSE Bug 1152990 for CVE-2019-16255",
"url": "https://bugzilla.suse.com/1152990"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "moderate"
}
],
"title": "CVE-2019-16255"
},
{
"cve": "CVE-2019-8320",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8320"
}
],
"notes": [
{
"category": "general",
"text": "A Directory Traversal issue was discovered in RubyGems 2.7.6 and later through 3.0.2. Before making new directories or touching files (which now include path-checking code for symlinks), it would delete the target destination. If that destination was hidden behind a symlink, a malicious gem could delete arbitrary files on the user\u0027s machine, presuming the attacker could guess at paths. Given how frequently gem is run as sudo, and how predictable paths are on modern systems (/tmp, /usr, etc.), this could likely lead to data loss or an unusable system.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8320",
"url": "https://www.suse.com/security/cve/CVE-2019-8320"
},
{
"category": "external",
"summary": "SUSE Bug 1130627 for CVE-2019-8320",
"url": "https://bugzilla.suse.com/1130627"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2019-8320"
},
{
"cve": "CVE-2019-8321",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8321"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since Gem::UserInteraction#verbose calls say without escaping, escape sequence injection is possible.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8321",
"url": "https://www.suse.com/security/cve/CVE-2019-8321"
},
{
"category": "external",
"summary": "SUSE Bug 1130623 for CVE-2019-8321",
"url": "https://bugzilla.suse.com/1130623"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2019-8321"
},
{
"cve": "CVE-2019-8322",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8322"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in RubyGems 2.6 and later through 3.0.2. The gem owner command outputs the contents of the API response directly to stdout. Therefore, if the response is crafted, escape sequence injection may occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8322",
"url": "https://www.suse.com/security/cve/CVE-2019-8322"
},
{
"category": "external",
"summary": "SUSE Bug 1130622 for CVE-2019-8322",
"url": "https://bugzilla.suse.com/1130622"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2019-8322"
},
{
"cve": "CVE-2019-8323",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8323"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in RubyGems 2.6 and later through 3.0.2. Gem::GemcutterUtilities#with_response may output the API response to stdout as it is. Therefore, if the API side modifies the response, escape sequence injection may occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8323",
"url": "https://www.suse.com/security/cve/CVE-2019-8323"
},
{
"category": "external",
"summary": "SUSE Bug 1130620 for CVE-2019-8323",
"url": "https://bugzilla.suse.com/1130620"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2019-8323"
},
{
"cve": "CVE-2019-8324",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8324"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in RubyGems 2.6 and later through 3.0.2. A crafted gem with a multi-line name is not handled correctly. Therefore, an attacker could inject arbitrary code to the stub line of gemspec, which is eval-ed by code in ensure_loadable_spec during the preinstall check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8324",
"url": "https://www.suse.com/security/cve/CVE-2019-8324"
},
{
"category": "external",
"summary": "SUSE Bug 1130617 for CVE-2019-8324",
"url": "https://bugzilla.suse.com/1130617"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2019-8324"
},
{
"cve": "CVE-2019-8325",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-8325"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since Gem::CommandManager#run calls alert_error without escaping, escape sequence injection is possible. (There are many ways to cause an error.)",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-8325",
"url": "https://www.suse.com/security/cve/CVE-2019-8325"
},
{
"category": "external",
"summary": "SUSE Bug 1130611 for CVE-2019-8325",
"url": "https://bugzilla.suse.com/1130611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2019-8325"
},
{
"cve": "CVE-2020-10663",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-10663"
}
],
"notes": [
{
"category": "general",
"text": "The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsing methods can lead to creation of a malicious object within the interpreter, with adverse effects that are application-dependent.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-10663",
"url": "https://www.suse.com/security/cve/CVE-2020-10663"
},
{
"category": "external",
"summary": "SUSE Bug 1167244 for CVE-2020-10663",
"url": "https://bugzilla.suse.com/1167244"
},
{
"category": "external",
"summary": "SUSE Bug 1171517 for CVE-2020-10663",
"url": "https://bugzilla.suse.com/1171517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"HPE Helion OpenStack 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-2.1.9-19.3.2.x86_64",
"HPE Helion OpenStack 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Enterprise Storage 5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-BCL:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE Linux Enterprise Server 12 SP2-LTSS:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-BCL:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP3-LTSS:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP2:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP4:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP5:ruby2.1-devel-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.s390x",
"SUSE OpenStack Cloud 7:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.s390x",
"SUSE OpenStack Cloud 7:yast2-ruby-bindings-3.1.53-9.8.1.x86_64",
"SUSE OpenStack Cloud 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:libruby2_1-2_1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-2.1.9-19.3.2.x86_64",
"SUSE OpenStack Cloud Crowbar 8:ruby2.1-stdlib-2.1.9-19.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-06-09T09:16:12Z",
"details": "important"
}
],
"title": "CVE-2020-10663"
}
]
}
GSD-2015-9096
Vulnerability from gsd - Updated: 2023-12-13 01:20Details
Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2015-9096",
"description": "Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.",
"id": "GSD-2015-9096",
"references": [
"https://www.suse.com/security/cve/CVE-2015-9096.html",
"https://www.debian.org/security/2017/dsa-3966",
"https://ubuntu.com/security/CVE-2015-9096",
"https://advisories.mageia.org/CVE-2015-9096.html",
"https://alas.aws.amazon.com/cve/html/CVE-2015-9096.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2015-9096"
],
"details": "Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.",
"id": "GSD-2015-9096",
"modified": "2023-12-13T01:20:02.575419Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9096",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "DSA-3966",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2017/dsa-3966"
},
{
"name": "https://hackerone.com/reports/137631",
"refsource": "MISC",
"url": "https://hackerone.com/reports/137631"
},
{
"name": "[debian-lts-announce] 20180714 [SECURITY] [DLA 1421-1] ruby2.1 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html"
},
{
"name": "https://github.com/rubysec/ruby-advisory-db/issues/215",
"refsource": "MISC",
"url": "https://github.com/rubysec/ruby-advisory-db/issues/215"
},
{
"name": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee",
"refsource": "MISC",
"url": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee"
},
{
"name": "http://www.mbsd.jp/Whitepaper/smtpi.pdf",
"refsource": "MISC",
"url": "http://www.mbsd.jp/Whitepaper/smtpi.pdf"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:ruby-lang:ruby:*:rc1:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "2.4.0",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2015-9096"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-93"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://hackerone.com/reports/137631",
"refsource": "MISC",
"tags": [
"Third Party Advisory"
],
"url": "https://hackerone.com/reports/137631"
},
{
"name": "https://github.com/rubysec/ruby-advisory-db/issues/215",
"refsource": "MISC",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/rubysec/ruby-advisory-db/issues/215"
},
{
"name": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee"
},
{
"name": "http://www.mbsd.jp/Whitepaper/smtpi.pdf",
"refsource": "MISC",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "http://www.mbsd.jp/Whitepaper/smtpi.pdf"
},
{
"name": "DSA-3966",
"refsource": "DEBIAN",
"tags": [],
"url": "https://www.debian.org/security/2017/dsa-3966"
},
{
"name": "[debian-lts-announce] 20180714 [SECURITY] [DLA 1421-1] ruby2.1 security update",
"refsource": "MLIST",
"tags": [],
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": true
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7
}
},
"lastModifiedDate": "2018-07-15T01:29Z",
"publishedDate": "2017-06-12T20:29Z"
}
}
}
GHSA-2H3C-5VQM-GQFH
Vulnerability from github – Published: 2022-05-14 03:14 – Updated: 2022-05-14 03:14
VLAI?
Details
Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.
Severity ?
6.1 (Medium)
{
"affected": [],
"aliases": [
"CVE-2015-9096"
],
"database_specific": {
"cwe_ids": [
"CWE-93"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-06-12T20:29:00Z",
"severity": "MODERATE"
},
"details": "Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.",
"id": "GHSA-2h3c-5vqm-gqfh",
"modified": "2022-05-14T03:14:14Z",
"published": "2022-05-14T03:14:14Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-9096"
},
{
"type": "WEB",
"url": "https://github.com/rubysec/ruby-advisory-db/issues/215"
},
{
"type": "WEB",
"url": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee"
},
{
"type": "WEB",
"url": "https://hackerone.com/reports/137631"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2017/dsa-3966"
},
{
"type": "WEB",
"url": "http://www.mbsd.jp/Whitepaper/smtpi.pdf"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"type": "CVSS_V3"
}
]
}
FKIE_CVE-2015-9096
Vulnerability from fkie_nvd - Published: 2017-06-12 20:29 - Updated: 2025-04-20 01:37
Severity ?
Summary
Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring.
References
| URL | Tags | ||
|---|---|---|---|
| cve@mitre.org | http://www.mbsd.jp/Whitepaper/smtpi.pdf | Exploit, Third Party Advisory | |
| cve@mitre.org | https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee | Patch, Third Party Advisory | |
| cve@mitre.org | https://github.com/rubysec/ruby-advisory-db/issues/215 | Issue Tracking, Third Party Advisory | |
| cve@mitre.org | https://hackerone.com/reports/137631 | Third Party Advisory | |
| cve@mitre.org | https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html | ||
| cve@mitre.org | https://www.debian.org/security/2017/dsa-3966 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.mbsd.jp/Whitepaper/smtpi.pdf | Exploit, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee | Patch, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://github.com/rubysec/ruby-advisory-db/issues/215 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://hackerone.com/reports/137631 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.debian.org/security/2017/dsa-3966 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ruby-lang:ruby:*:rc1:*:*:*:*:*:*",
"matchCriteriaId": "70BED4E2-17E3-4B9D-8C58-ECBE978E90F3",
"versionEndIncluding": "2.4.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF sequences immediately before and after a DATA substring."
},
{
"lang": "es",
"value": "El modulo Net::SMTP de Ruby anterior a su versi\u00f3n 2.4.0 es vulnerable a la inyecci\u00f3n de comandos SMTP mediante secuencias CRLF de los comandos \"RCPT TO\" o \"MAIL FROM\", como demuestra las secuencias CRLF inmediatamente antes y despu\u00e9s de la substring DATA."
}
],
"id": "CVE-2015-9096",
"lastModified": "2025-04-20T01:37:25.860",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": true
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 2.7,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2017-06-12T20:29:00.190",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "http://www.mbsd.jp/Whitepaper/smtpi.pdf"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee"
},
{
"source": "cve@mitre.org",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/rubysec/ruby-advisory-db/issues/215"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://hackerone.com/reports/137631"
},
{
"source": "cve@mitre.org",
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html"
},
{
"source": "cve@mitre.org",
"url": "https://www.debian.org/security/2017/dsa-3966"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory"
],
"url": "http://www.mbsd.jp/Whitepaper/smtpi.pdf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/rubysec/ruby-advisory-db/issues/215"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://hackerone.com/reports/137631"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.debian.org/security/2017/dsa-3966"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-93"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
RHSA-2026:7305
Vulnerability from csaf_redhat - Published: 2026-04-09 12:35 - Updated: 2026-04-21 13:31Summary
Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
Severity
Moderate
Notes
Topic: An update for Red Hat Hardened Images RPMs is now available.
Details: This update includes the following RPMs:
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2, when using NTFS or FAT filesystems, allows remote attackers to read arbitrary CGI files via a trailing (1) + (plus), (2) %2b (encoded plus), (3) . (dot), (4) %2e (encoded dot), or (5) %20 (encoded space) character in the URI, possibly related to the WEBrick::HTTPServlet::FileHandler and WEBrick::HTTPServer.new functionality and the :DocumentRoot option.
5.0 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via (1) untrace_var, (2) $PROGRAM_NAME, and (3) syslog at safe level 4, and (4) insecure methods at safe levels 1 through 3.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
Algorithmic complexity vulnerability in the WEBrick::HTTPUtils.split_header_value function in WEBrick::HTTP::DefaultFileHandler in WEBrick in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted HTTP request that is processed by a backtracking regular expression.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
The dl module in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not check "taintness" of inputs, which allows context-dependent attackers to bypass safe levels and execute dangerous functions by accessing a library using DL.dlopen.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 and earlier uses sequential transaction IDs and constant source ports for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
Ruby (aka CRuby) before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.
5.0 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
Ruby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against a variant of the MurmurHash2 algorithm, a different vulnerability than CVE-2011-4815.
5.0 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.
4.3 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a denial of service (segmentation fault) via vectors that trigger a stack-based buffer overflow.
2.6 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
The URI.decode_www_form_component method in Ruby before 1.9.2-p330 allows remote attackers to cause a denial of service (catastrophic regular expression backtracking, resource consumption, or application crash) via a crafted string.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.
4.3 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nested entity references, aka an XML Entity Expansion (XEE) attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1821 and CVE-2014-8080.
4.3 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
A SMTP command injection flaw was found in the way Ruby's Net::SMTP module handled CRLF sequences in certain SMTP commands. An attacker could potentially use this flaw to inject SMTP commands in a SMTP session in order to facilitate phishing attacks or spam campaigns.
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
It was found that WEBrick did not sanitize all its log messages. If logs were printed in a terminal, an attacker could interact with the terminal via the use of escape sequences.
5.4 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
A buffer overflow vulnerability was found in the JSON extension of ruby. An attacker with the ability to pass a specially crafted JSON input to the extension could use this flaw to expose the interpreter's heap memory.
5.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
It was found that the methods from the Dir class did not properly handle strings containing the NULL byte. An attacker, able to inject NULL bytes in a path, could possibly trigger an unspecified behavior of the ruby script.
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
Workaround
It is possible to test for presence of the NULL byte manually prior to call a Dir method with an untrusted string.
Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients. NOTE: this issue exists because of an incomplete fix for CVE-2017-17742, which addressed the CRLF vector, but did not address an isolated CR or an isolated LF.
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which also has a poor header check), which may lead to an HTTP Request Smuggling attack.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
A flaw was found in the way the Ruby REXML library parsed XML documents. Parsing a specially crafted XML document using REXML and writing parsed data back to a new XML document results in creating a document with a different structure. This issue could affect the integrity of processed data in applications using REXML that parse XML documents, write data back to XML, and re-parse them again.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
Ruby's Net::FTP module trusted the IP address included in the FTP server's response to the PASV command. A malicious FTP server could use this to make Ruby applications using the Net::FTP module to connect to arbitrary hosts and use this to perform port scanning or information extraction from systems not accessible from the FTP server.
5.4 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
A flaw was found in Ruby. RubyGems cgi gem could allow a remote attacker to conduct spoofing attacks caused by the mishandling of security prefixes in cookie names in the CGI::Cookie.parse function. By sending a specially-crafted request, an attacker could perform cookie prefix spoofing attacks.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
A buffer overrun vulnerability was found in Ruby. The issue occurs in a conversion algorithm from a String to a Float that causes process termination due to a segmentation fault, but under limited circumstances. This flaw may cause an illegal memory read.
6.2 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
A flaw was found in the Time gem and Time library of Ruby. The Time parser mishandles invalid strings with specific characters and causes an increase in execution time for parsing strings to Time objects. This issue may result in a Regular expression denial of service (ReDoS).
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
A flaw was found in Ruby. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings.
6.6 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
Workaround
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in zlib, a Ruby interface for the zlib compression/decompression library. The Zlib::GzipReader component contains a buffer overflow vulnerability. This occurs because the zstream_buffer_ungets function does not ensure sufficient memory capacity before moving existing data, which can lead to memory corruption. An attacker could potentially exploit this to cause unexpected behavior or system instability.
5.6 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7305
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Acknowledgments
oCERT
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for Red Hat Hardened Images RPMs is now available.",
"title": "Topic"
},
{
"category": "general",
"text": "This update includes the following RPMs:",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:7305",
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
},
{
"category": "external",
"summary": "https://images.redhat.com/",
"url": "https://images.redhat.com/"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27820",
"url": "https://access.redhat.com/security/cve/CVE-2026-27820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3905",
"url": "https://access.redhat.com/security/cve/CVE-2008-3905"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3657",
"url": "https://access.redhat.com/security/cve/CVE-2008-3657"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3656",
"url": "https://access.redhat.com/security/cve/CVE-2008-3656"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3655",
"url": "https://access.redhat.com/security/cve/CVE-2008-3655"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-27282",
"url": "https://access.redhat.com/security/cve/CVE-2024-27282"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2021-31810",
"url": "https://access.redhat.com/security/cve/CVE-2021-31810"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2019-16254",
"url": "https://access.redhat.com/security/cve/CVE-2019-16254"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2018-8780",
"url": "https://access.redhat.com/security/cve/CVE-2018-8780"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2017-14064",
"url": "https://access.redhat.com/security/cve/CVE-2017-14064"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2017-10784",
"url": "https://access.redhat.com/security/cve/CVE-2017-10784"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2015-9096",
"url": "https://access.redhat.com/security/cve/CVE-2015-9096"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-8090",
"url": "https://access.redhat.com/security/cve/CVE-2014-8090"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-8080",
"url": "https://access.redhat.com/security/cve/CVE-2014-8080"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-6438",
"url": "https://access.redhat.com/security/cve/CVE-2014-6438"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-4975",
"url": "https://access.redhat.com/security/cve/CVE-2014-4975"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2013-1821",
"url": "https://access.redhat.com/security/cve/CVE-2013-1821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2012-5371",
"url": "https://access.redhat.com/security/cve/CVE-2012-5371"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2011-4815",
"url": "https://access.redhat.com/security/cve/CVE-2011-4815"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-1891",
"url": "https://access.redhat.com/security/cve/CVE-2008-1891"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-28756",
"url": "https://access.redhat.com/security/cve/CVE-2023-28756"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2022-28739",
"url": "https://access.redhat.com/security/cve/CVE-2022-28739"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2021-41819",
"url": "https://access.redhat.com/security/cve/CVE-2021-41819"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2021-28965",
"url": "https://access.redhat.com/security/cve/CVE-2021-28965"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2020-25613",
"url": "https://access.redhat.com/security/cve/CVE-2020-25613"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7305.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update",
"tracking": {
"current_release_date": "2026-04-21T13:31:12+00:00",
"generator": {
"date": "2026-04-21T13:31:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.5"
}
},
"id": "RHSA-2026:7305",
"initial_release_date": "2026-04-09T12:35:20+00:00",
"revision_history": [
{
"date": "2026-04-09T12:35:20+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-21T02:52:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-21T13:31:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Hardened Images",
"product": {
"name": "Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:hummingbird:1"
}
}
}
],
"category": "product_family",
"name": "Red Hat Hardened Images"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3-3-main@aarch64",
"product": {
"name": "ruby3-3-main@aarch64",
"product_id": "ruby3-3-main@aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby3.3@3.3.10-23.1.hum1?arch=aarch64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-aarch64-rpms"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3-3-main@src",
"product": {
"name": "ruby3-3-main@src",
"product_id": "ruby3-3-main@src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby3.3@3.3.10-23.1.hum1?arch=src\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-source-rpms"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3-3-main@x86_64",
"product": {
"name": "ruby3-3-main@x86_64",
"product_id": "ruby3-3-main@x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby3.3@3.3.10-23.1.hum1?arch=x86_64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3-3-main@noarch",
"product": {
"name": "ruby3-3-main@noarch",
"product_id": "ruby3-3-main@noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby3.3-default-gems@3.3.10-23.1.hum1?arch=noarch\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3-3-main@aarch64 as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby3-3-main@aarch64"
},
"product_reference": "ruby3-3-main@aarch64",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3-3-main@noarch as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby3-3-main@noarch"
},
"product_reference": "ruby3-3-main@noarch",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3-3-main@src as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby3-3-main@src"
},
"product_reference": "ruby3-3-main@src",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3-3-main@x86_64 as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby3-3-main@x86_64"
},
"product_reference": "ruby3-3-main@x86_64",
"relates_to_product_reference": "Red Hat Hardened Images"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2008-1891",
"discovery_date": "2008-04-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "443829"
}
],
"notes": [
{
"category": "description",
"text": "Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2, when using NTFS or FAT filesystems, allows remote attackers to read arbitrary CGI files via a trailing (1) + (plus), (2) %2b (encoded plus), (3) . (dot), (4) %2e (encoded dot), or (5) %20 (encoded space) character in the URI, possibly related to the WEBrick::HTTPServlet::FileHandler and WEBrick::HTTPServer.new functionality and the :DocumentRoot option.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: WEBrick CGI source disclosure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2008-1891\n\nThe risks associated with fixing this flaw outweigh the benefits of the fix. Red Hat does not plan to fix this flaw in Red Hat Enterprise Linux.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-1891"
},
{
"category": "external",
"summary": "RHBZ#443829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=443829"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-1891",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-1891"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-1891",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-1891"
}
],
"release_date": "2008-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: WEBrick CGI source disclosure"
},
{
"cve": "CVE-2008-3655",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "458948"
}
],
"notes": [
{
"category": "description",
"text": "Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via (1) untrace_var, (2) $PROGRAM_NAME, and (3) syslog at safe level 4, and (4) insecure methods at safe levels 1 through 3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: multiple insufficient safe mode restrictions",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3655"
},
{
"category": "external",
"summary": "RHBZ#458948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=458948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3655",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3655"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3655",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3655"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: multiple insufficient safe mode restrictions"
},
{
"cve": "CVE-2008-3656",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "458953"
}
],
"notes": [
{
"category": "description",
"text": "Algorithmic complexity vulnerability in the WEBrick::HTTPUtils.split_header_value function in WEBrick::HTTP::DefaultFileHandler in WEBrick in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted HTTP request that is processed by a backtracking regular expression.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: WEBrick DoS vulnerability (CPU consumption)",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3656"
},
{
"category": "external",
"summary": "RHBZ#458953",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=458953"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3656",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3656"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: WEBrick DoS vulnerability (CPU consumption)"
},
{
"cve": "CVE-2008-3657",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "458966"
}
],
"notes": [
{
"category": "description",
"text": "The dl module in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not check \"taintness\" of inputs, which allows context-dependent attackers to bypass safe levels and execute dangerous functions by accessing a library using DL.dlopen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: missing \"taintness\" checks in dl module",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3657"
},
{
"category": "external",
"summary": "RHBZ#458966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=458966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3657",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3657"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3657",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3657"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: missing \"taintness\" checks in dl module"
},
{
"cve": "CVE-2008-3905",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "461495"
}
],
"notes": [
{
"category": "description",
"text": "resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 and earlier uses sequential transaction IDs and constant source ports for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: use of predictable source port and transaction id in DNS requests done by resolv.rb module",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3905"
},
{
"category": "external",
"summary": "RHBZ#461495",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=461495"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3905",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3905"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3905",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3905"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: use of predictable source port and transaction id in DNS requests done by resolv.rb module"
},
{
"acknowledgments": [
{
"names": [
"oCERT"
]
}
],
"cve": "CVE-2011-4815",
"discovery_date": "2011-11-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "750564"
}
],
"notes": [
{
"category": "description",
"text": "Ruby (aka CRuby) before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: hash table collisions CPU usage DoS (oCERT-2011-003)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-4815"
},
{
"category": "external",
"summary": "RHBZ#750564",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750564"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-4815",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4815"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4815",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4815"
}
],
"release_date": "2011-12-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: hash table collisions CPU usage DoS (oCERT-2011-003)"
},
{
"cve": "CVE-2012-5371",
"discovery_date": "2012-11-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "875236"
}
],
"notes": [
{
"category": "description",
"text": "Ruby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against a variant of the MurmurHash2 algorithm, a different vulnerability than CVE-2011-4815.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Murmur hash-flooding DoS flaw in ruby 1.9 (oCERT-2012-001)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Not vulnerable. This issue did not affect the versions of ruby as shipped with Red Hat Enterprise Linux 5 and 6.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-5371"
},
{
"category": "external",
"summary": "RHBZ#875236",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=875236"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-5371",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5371"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5371",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5371"
}
],
"release_date": "2012-11-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Murmur hash-flooding DoS flaw in ruby 1.9 (oCERT-2012-001)"
},
{
"cve": "CVE-2013-1821",
"discovery_date": "2013-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "914716"
}
],
"notes": [
{
"category": "description",
"text": "lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: entity expansion DoS vulnerability in REXML",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1821"
},
{
"category": "external",
"summary": "RHBZ#914716",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=914716"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1821",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1821"
},
{
"category": "external",
"summary": "http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22/",
"url": "http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22/"
}
],
"release_date": "2013-02-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: entity expansion DoS vulnerability in REXML"
},
{
"cve": "CVE-2014-4975",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2014-07-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1118158"
}
],
"notes": [
{
"category": "description",
"text": "Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a denial of service (segmentation fault) via vectors that trigger a stack-based buffer overflow.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: off-by-one stack-based buffer overflow in the encodes() function",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of ruby as shipped with Red Hat Enterprise Linux 5 and 6.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-4975"
},
{
"category": "external",
"summary": "RHBZ#1118158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1118158"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-4975",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-4975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-4975"
}
],
"release_date": "2014-07-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: off-by-one stack-based buffer overflow in the encodes() function"
},
{
"cve": "CVE-2014-6438",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2015-07-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1490845"
}
],
"notes": [
{
"category": "description",
"text": "The URI.decode_www_form_component method in Ruby before 1.9.2-p330 allows remote attackers to cause a denial of service (catastrophic regular expression backtracking, resource consumption, or application crash) via a crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Unsafe parsing of long strings via decode_www_form_component method",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-6438"
},
{
"category": "external",
"summary": "RHBZ#1490845",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1490845"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-6438",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-6438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-6438"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2014/08/19/ruby-1-9-2-p330-released/",
"url": "https://www.ruby-lang.org/en/news/2014/08/19/ruby-1-9-2-p330-released/"
}
],
"release_date": "2014-08-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Unsafe parsing of long strings via decode_www_form_component method"
},
{
"cve": "CVE-2014-8080",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2014-10-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1157709"
}
],
"notes": [
{
"category": "description",
"text": "The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: REXML billion laughs attack via parameter entity expansion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat JBoss SOA Platform 5 is now in Maintenance Support phase receiving only qualified Important and Critical impact security fixes; and Red Hat JBoss SOA Platform 4.3 is now in Extended Life Support phase receiving only Critical impact security fixes. This issue has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat JBoss Middleware Product Life Cycle: https://access.redhat.com/support/policy/updates/jboss_notes/",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-8080"
},
{
"category": "external",
"summary": "RHBZ#1157709",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1157709"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-8080",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8080"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8080",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8080"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2014/10/27/rexml-dos-cve-2014-8080/",
"url": "https://www.ruby-lang.org/en/news/2014/10/27/rexml-dos-cve-2014-8080/"
}
],
"release_date": "2014-10-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: REXML billion laughs attack via parameter entity expansion"
},
{
"acknowledgments": [
{
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2014-8090",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2014-10-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1159927"
}
],
"notes": [
{
"category": "description",
"text": "The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nested entity references, aka an XML Entity Expansion (XEE) attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1821 and CVE-2014-8080.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: REXML incomplete fix for CVE-2014-8080",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat JBoss SOA Platform 5 is now in Maintenance Support phase receiving only qualified Important and Critical impact security fixes; and Red Hat JBoss SOA Platform 4.3 is now in Extended Life Support phase receiving only Critical impact security fixes. This issue has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat JBoss Middleware Product Life Cycle: https://access.redhat.com/support/policy/updates/jboss_notes/",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-8090"
},
{
"category": "external",
"summary": "RHBZ#1159927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1159927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-8090",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8090"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8090",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8090"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/",
"url": "https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/"
}
],
"release_date": "2014-11-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: REXML incomplete fix for CVE-2014-8080"
},
{
"cve": "CVE-2015-9096",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2017-06-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461846"
}
],
"notes": [
{
"category": "description",
"text": "A SMTP command injection flaw was found in the way Ruby\u0027s Net::SMTP module handled CRLF sequences in certain SMTP commands. An attacker could potentially use this flaw to inject SMTP commands in a SMTP session in order to facilitate phishing attacks or spam campaigns.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-9096"
},
{
"category": "external",
"summary": "RHBZ#1461846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461846"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-9096",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-9096"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-9096",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-9096"
}
],
"release_date": "2017-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP"
},
{
"cve": "CVE-2017-10784",
"cwe": {
"id": "CWE-117",
"name": "Improper Output Neutralization for Logs"
},
"discovery_date": "2017-09-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1492012"
}
],
"notes": [
{
"category": "description",
"text": "It was found that WEBrick did not sanitize all its log messages. If logs were printed in a terminal, an attacker could interact with the terminal via the use of escape sequences.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Escape sequence injection vulnerability in the Basic authentication of WEBrick",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of ruby as shipped with Red Hat Enterprise Linux 5, 6, and 7, as well as the versions of rh-ruby22-ruby and rh-ruby23-ruby as shipped with Red Hat Software Collections 3. Red Hat Product Security has rated this issue as having Moderate security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10784"
},
{
"category": "external",
"summary": "RHBZ#1492012",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1492012"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10784",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10784"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10784",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10784"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/",
"url": "https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/"
}
],
"release_date": "2017-09-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Escape sequence injection vulnerability in the Basic authentication of WEBrick"
},
{
"cve": "CVE-2017-14064",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-08-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1487552"
}
],
"notes": [
{
"category": "description",
"text": "A buffer overflow vulnerability was found in the JSON extension of ruby. An attacker with the ability to pass a specially crafted JSON input to the extension could use this flaw to expose the interpreter\u0027s heap memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Arbitrary heap exposure during a JSON.generate call",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of ruby as shipped with Red Hat Enterprise Linux 5, and 6. These versions do not include the JSON module.\n\nThis issue affects the versions of ruby as shipped with Red Hat Enterprise Linux 7, as well as the versions of rh-ruby22-ruby and rh-ruby23-ruby as shipped with Red Hat Software Collections. Red Hat Product Security has rated this issue as having Low security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14064"
},
{
"category": "external",
"summary": "RHBZ#1487552",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1487552"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14064",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14064"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14064",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14064"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2017/09/14/json-heap-exposure-cve-2017-14064/",
"url": "https://www.ruby-lang.org/en/news/2017/09/14/json-heap-exposure-cve-2017-14064/"
}
],
"release_date": "2017-03-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: Arbitrary heap exposure during a JSON.generate call"
},
{
"cve": "CVE-2018-8780",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-03-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1561949"
}
],
"notes": [
{
"category": "description",
"text": "It was found that the methods from the Dir class did not properly handle strings containing the NULL byte. An attacker, able to inject NULL bytes in a path, could possibly trigger an unspecified behavior of the ruby script.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Unintentional directory traversal by poisoned NULL byte in Dir",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of ruby as shipped with Red Hat CloudForms 4. Red Hat Product Security has rated this issue as having security impact of Moderate. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.\n\nThis issue affects the versions of ruby as shipped with Red Hat Subscription Asset Manager 1. Red Hat Product Security has rated this issue as having security impact of Moderate. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-8780"
},
{
"category": "external",
"summary": "RHBZ#1561949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1561949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-8780",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-8780"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-8780",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-8780"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-dir-cve-2018-8780/",
"url": "https://www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-dir-cve-2018-8780/"
}
],
"release_date": "2018-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
},
{
"category": "workaround",
"details": "It is possible to test for presence of the NULL byte manually prior to call a Dir method with an untrusted string.",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Unintentional directory traversal by poisoned NULL byte in Dir"
},
{
"cve": "CVE-2019-16254",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2020-01-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1789556"
}
],
"notes": [
{
"category": "description",
"text": "Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients. NOTE: this issue exists because of an incomplete fix for CVE-2017-17742, which addressed the CRLF vector, but did not address an isolated CR or an isolated LF.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: HTTP response splitting in WEBrick",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-16254"
},
{
"category": "external",
"summary": "RHBZ#1789556",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1789556"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-16254",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16254"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-16254",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16254"
}
],
"release_date": "2019-10-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: HTTP response splitting in WEBrick"
},
{
"cve": "CVE-2020-25613",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2020-09-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1883623"
}
],
"notes": [
{
"category": "description",
"text": "An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which also has a poor header check), which may lead to an HTTP Request Smuggling attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Potential HTTP request smuggling in WEBrick",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25613"
},
{
"category": "external",
"summary": "RHBZ#1883623",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1883623"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25613",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25613"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25613",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25613"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/",
"url": "https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/"
}
],
"release_date": "2020-09-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Potential HTTP request smuggling in WEBrick"
},
{
"cve": "CVE-2021-28965",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"discovery_date": "2021-04-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1947526"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way the Ruby REXML library parsed XML documents. Parsing a specially crafted XML document using REXML and writing parsed data back to a new XML document results in creating a document with a different structure. This issue could affect the integrity of processed data in applications using REXML that parse XML documents, write data back to XML, and re-parse them again.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: XML round-trip vulnerability in REXML",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-28965"
},
{
"category": "external",
"summary": "RHBZ#1947526",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1947526"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-28965",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-28965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-28965"
}
],
"release_date": "2021-04-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: XML round-trip vulnerability in REXML"
},
{
"cve": "CVE-2021-31810",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2021-07-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1980126"
}
],
"notes": [
{
"category": "description",
"text": "Ruby\u0027s Net::FTP module trusted the IP address included in the FTP server\u0027s response to the PASV command. A malicious FTP server could use this to make Ruby applications using the Net::FTP module to connect to arbitrary hosts and use this to perform port scanning or information extraction from systems not accessible from the FTP server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat CloudForms 5.11 does not ship Ruby or RubyGem net-ftp and thus not affected by the flaw. RubyGem net-sftp (Ruby implementation of Secure File Transfer Protocol) which product ship is different library component from the affected package.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-31810"
},
{
"category": "external",
"summary": "RHBZ#1980126",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1980126"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-31810",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-31810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-31810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-31810"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2021/07/07/trusting-pasv-responses-in-net-ftp/",
"url": "https://www.ruby-lang.org/en/news/2021/07/07/trusting-pasv-responses-in-net-ftp/"
}
],
"release_date": "2021-07-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host"
},
{
"cve": "CVE-2021-41819",
"discovery_date": "2021-11-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2026757"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Ruby. RubyGems cgi gem could allow a remote attacker to conduct spoofing attacks caused by the mishandling of security prefixes in cookie names in the CGI::Cookie.parse function. By sending a specially-crafted request, an attacker could perform cookie prefix spoofing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Cookie prefix spoofing in CGI::Cookie.parse",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-41819"
},
{
"category": "external",
"summary": "RHBZ#2026757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026757"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-41819",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41819"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-41819",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41819"
}
],
"release_date": "2021-11-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Cookie prefix spoofing in CGI::Cookie.parse"
},
{
"cve": "CVE-2022-28739",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2022-04-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2075687"
}
],
"notes": [
{
"category": "description",
"text": "A buffer overrun vulnerability was found in Ruby. The issue occurs in a conversion algorithm from a String to a Float that causes process termination due to a segmentation fault, but under limited circumstances. This flaw may cause an illegal memory read.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Buffer overrun in String-to-Float conversion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-28739"
},
{
"category": "external",
"summary": "RHBZ#2075687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2075687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-28739",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28739"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-28739",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28739"
},
{
"category": "external",
"summary": "http://www.ruby-lang.org/en/news/2022/04/12/buffer-overrun-in-string-to-float-cve-2022-28739/",
"url": "http://www.ruby-lang.org/en/news/2022/04/12/buffer-overrun-in-string-to-float-cve-2022-28739/"
}
],
"release_date": "2022-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Buffer overrun in String-to-Float conversion"
},
{
"cve": "CVE-2023-28756",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2023-04-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184061"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Time gem and Time library of Ruby. The Time parser mishandles invalid strings with specific characters and causes an increase in execution time for parsing strings to Time objects. This issue may result in a Regular expression denial of service (ReDoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: ReDoS vulnerability in Time",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-28756"
},
{
"category": "external",
"summary": "RHBZ#2184061",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184061"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-28756",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-28756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-28756"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/",
"url": "https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/"
}
],
"release_date": "2023-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: ReDoS vulnerability in Time"
},
{
"cve": "CVE-2024-27282",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276810"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Ruby. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Arbitrary memory address read vulnerability with Regex search",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The CVE-2024-27282 vulnerability in Ruby is classified as a Moderate severity issue due to its potential to expose arbitrary heap data relative to the start of the text through the Ruby regex compiler. While the vulnerability allows the extraction of pointers and sensitive strings from memory, its exploitation requires attacker-supplied data to be provided to the regex compiler. This means that an attacker would need to craft specific input to exploit the issue, limiting the ease of exploitation compared to vulnerabilities that might be remotely exploitable without user interaction.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-27282"
},
{
"category": "external",
"summary": "RHBZ#2276810",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276810"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-27282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27282"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/",
"url": "https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Arbitrary memory address read vulnerability with Regex search"
},
{
"cve": "CVE-2026-27820",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-16T18:00:53.206650+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2459002"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in zlib, a Ruby interface for the zlib compression/decompression library. The Zlib::GzipReader component contains a buffer overflow vulnerability. This occurs because the zstream_buffer_ungets function does not ensure sufficient memory capacity before moving existing data, which can lead to memory corruption. An attacker could potentially exploit this to cause unexpected behavior or system instability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "zlib: zlib: Memory corruption via buffer overflow in Zlib::GzipReader",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A buffer overflow vulnerability exists in the Zlib::GzipReader component of the Ruby zlib interface. This flaw, caused by insufficient memory capacity during data manipulation, could lead to memory corruption and system instability. This vulnerability is considered of a Moderate severity this happens because the high complexity to exploit, additionally the attacker may have not full control over the data is being corrupted or exfiltrated.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27820"
},
{
"category": "external",
"summary": "RHBZ#2459002",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459002"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27820"
},
{
"category": "external",
"summary": "https://github.com/ruby/zlib/security/advisories/GHSA-g857-hhfv-j68w",
"url": "https://github.com/ruby/zlib/security/advisories/GHSA-g857-hhfv-j68w"
},
{
"category": "external",
"summary": "https://hackerone.com/reports/3467067",
"url": "https://hackerone.com/reports/3467067"
}
],
"release_date": "2026-04-16T17:27:48.944000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:35:20+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7305"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-3-main@aarch64",
"Red Hat Hardened Images:ruby3-3-main@noarch",
"Red Hat Hardened Images:ruby3-3-main@src",
"Red Hat Hardened Images:ruby3-3-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "zlib: zlib: Memory corruption via buffer overflow in Zlib::GzipReader"
}
]
}
RHSA-2026:8838
Vulnerability from csaf_redhat - Published: 2026-04-17 23:15 - Updated: 2026-04-21 13:32Summary
Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
Severity
Moderate
Notes
Topic: An update for Red Hat Hardened Images RPMs is now available.
Details: This update includes the following RPMs:
ruby4.0:
* ruby4.0-4.0.0-33.3.hum1 (aarch64, x86_64)
* ruby4.0-bundled-gems-4.0.0-33.3.hum1 (aarch64, x86_64)
* ruby4.0-default-gems-4.0.0-33.3.hum1 (noarch)
* ruby4.0-devel-4.0.0-33.3.hum1 (aarch64, x86_64)
* ruby4.0-doc-4.0.0-33.3.hum1 (noarch)
* ruby4.0-libs-4.0.0-33.3.hum1 (aarch64, x86_64)
* rubygem4.0-bigdecimal-4.0.1-33.3.hum1 (aarch64, x86_64)
* rubygem4.0-bundler-4.0.3-33.3.hum1 (noarch)
* rubygem4.0-devel-4.0.3-33.3.hum1 (noarch)
* rubygem4.0-io-console-0.8.2-33.3.hum1 (aarch64, x86_64)
* rubygem4.0-irb-1.16.0-33.3.hum1 (noarch)
* rubygem4.0-json-2.18.0-33.3.hum1 (aarch64, x86_64)
* rubygem4.0-minitest-6.0.0-33.3.hum1 (noarch)
* rubygem4.0-power_assert-3.0.1-33.3.hum1 (noarch)
* rubygem4.0-psych-5.3.1-33.3.hum1 (aarch64, x86_64)
* rubygem4.0-racc-1.8.1-33.3.hum1 (aarch64, x86_64)
* rubygem4.0-rake-13.3.1-33.3.hum1 (noarch)
* rubygem4.0-rbs-3.10.0-33.3.hum1 (aarch64, x86_64)
* rubygem4.0-rdoc-7.0.3-33.3.hum1 (noarch)
* rubygem4.0-rexml-3.4.4-33.3.hum1 (noarch)
* rubygem4.0-rss-0.3.2-33.3.hum1 (noarch)
* rubygem4.0-rubygems-4.0.3-33.3.hum1 (noarch)
* rubygem4.0-test-unit-3.7.5-33.3.hum1 (noarch)
* rubygem4.0-typeprof-0.31.1-33.3.hum1 (noarch)
* ruby4.0-4.0.0-33.3.hum1.src (src)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2, when using NTFS or FAT filesystems, allows remote attackers to read arbitrary CGI files via a trailing (1) + (plus), (2) %2b (encoded plus), (3) . (dot), (4) %2e (encoded dot), or (5) %20 (encoded space) character in the URI, possibly related to the WEBrick::HTTPServlet::FileHandler and WEBrick::HTTPServer.new functionality and the :DocumentRoot option.
5.0 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via (1) untrace_var, (2) $PROGRAM_NAME, and (3) syslog at safe level 4, and (4) insecure methods at safe levels 1 through 3.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
Algorithmic complexity vulnerability in the WEBrick::HTTPUtils.split_header_value function in WEBrick::HTTP::DefaultFileHandler in WEBrick in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted HTTP request that is processed by a backtracking regular expression.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
The dl module in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not check "taintness" of inputs, which allows context-dependent attackers to bypass safe levels and execute dangerous functions by accessing a library using DL.dlopen.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 and earlier uses sequential transaction IDs and constant source ports for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
Ruby (aka CRuby) before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.
5.0 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
Ruby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against a variant of the MurmurHash2 algorithm, a different vulnerability than CVE-2011-4815.
5.0 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.
4.3 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a denial of service (segmentation fault) via vectors that trigger a stack-based buffer overflow.
2.6 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
The URI.decode_www_form_component method in Ruby before 1.9.2-p330 allows remote attackers to cause a denial of service (catastrophic regular expression backtracking, resource consumption, or application crash) via a crafted string.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.
4.3 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nested entity references, aka an XML Entity Expansion (XEE) attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1821 and CVE-2014-8080.
4.3 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
A SMTP command injection flaw was found in the way Ruby's Net::SMTP module handled CRLF sequences in certain SMTP commands. An attacker could potentially use this flaw to inject SMTP commands in a SMTP session in order to facilitate phishing attacks or spam campaigns.
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
It was found that WEBrick did not sanitize all its log messages. If logs were printed in a terminal, an attacker could interact with the terminal via the use of escape sequences.
5.4 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
A buffer overflow vulnerability was found in the JSON extension of ruby. An attacker with the ability to pass a specially crafted JSON input to the extension could use this flaw to expose the interpreter's heap memory.
5.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
It was found that the methods from the Dir class did not properly handle strings containing the NULL byte. An attacker, able to inject NULL bytes in a path, could possibly trigger an unspecified behavior of the ruby script.
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
Workaround
It is possible to test for presence of the NULL byte manually prior to call a Dir method with an untrusted string.
Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients. NOTE: this issue exists because of an incomplete fix for CVE-2017-17742, which addressed the CRLF vector, but did not address an isolated CR or an isolated LF.
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which also has a poor header check), which may lead to an HTTP Request Smuggling attack.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
A flaw was found in the way the Ruby REXML library parsed XML documents. Parsing a specially crafted XML document using REXML and writing parsed data back to a new XML document results in creating a document with a different structure. This issue could affect the integrity of processed data in applications using REXML that parse XML documents, write data back to XML, and re-parse them again.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
Ruby's Net::FTP module trusted the IP address included in the FTP server's response to the PASV command. A malicious FTP server could use this to make Ruby applications using the Net::FTP module to connect to arbitrary hosts and use this to perform port scanning or information extraction from systems not accessible from the FTP server.
5.4 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
A flaw was found in Ruby. RubyGems cgi gem could allow a remote attacker to conduct spoofing attacks caused by the mishandling of security prefixes in cookie names in the CGI::Cookie.parse function. By sending a specially-crafted request, an attacker could perform cookie prefix spoofing attacks.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
A buffer overrun vulnerability was found in Ruby. The issue occurs in a conversion algorithm from a String to a Float that causes process termination due to a segmentation fault, but under limited circumstances. This flaw may cause an illegal memory read.
6.2 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
A flaw was found in the Time gem and Time library of Ruby. The Time parser mishandles invalid strings with specific characters and causes an increase in execution time for parsing strings to Time objects. This issue may result in a Regular expression denial of service (ReDoS).
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
A flaw was found in Ruby. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings.
6.6 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
Workaround
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in zlib, a Ruby interface for the zlib compression/decompression library. The Zlib::GzipReader component contains a buffer overflow vulnerability. This occurs because the zstream_buffer_ungets function does not ensure sufficient memory capacity before moving existing data, which can lead to memory corruption. An attacker could potentially exploit this to cause unexpected behavior or system instability.
5.6 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:8838
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Acknowledgments
oCERT
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for Red Hat Hardened Images RPMs is now available.",
"title": "Topic"
},
{
"category": "general",
"text": "This update includes the following RPMs:\n\nruby4.0:\n * ruby4.0-4.0.0-33.3.hum1 (aarch64, x86_64)\n * ruby4.0-bundled-gems-4.0.0-33.3.hum1 (aarch64, x86_64)\n * ruby4.0-default-gems-4.0.0-33.3.hum1 (noarch)\n * ruby4.0-devel-4.0.0-33.3.hum1 (aarch64, x86_64)\n * ruby4.0-doc-4.0.0-33.3.hum1 (noarch)\n * ruby4.0-libs-4.0.0-33.3.hum1 (aarch64, x86_64)\n * rubygem4.0-bigdecimal-4.0.1-33.3.hum1 (aarch64, x86_64)\n * rubygem4.0-bundler-4.0.3-33.3.hum1 (noarch)\n * rubygem4.0-devel-4.0.3-33.3.hum1 (noarch)\n * rubygem4.0-io-console-0.8.2-33.3.hum1 (aarch64, x86_64)\n * rubygem4.0-irb-1.16.0-33.3.hum1 (noarch)\n * rubygem4.0-json-2.18.0-33.3.hum1 (aarch64, x86_64)\n * rubygem4.0-minitest-6.0.0-33.3.hum1 (noarch)\n * rubygem4.0-power_assert-3.0.1-33.3.hum1 (noarch)\n * rubygem4.0-psych-5.3.1-33.3.hum1 (aarch64, x86_64)\n * rubygem4.0-racc-1.8.1-33.3.hum1 (aarch64, x86_64)\n * rubygem4.0-rake-13.3.1-33.3.hum1 (noarch)\n * rubygem4.0-rbs-3.10.0-33.3.hum1 (aarch64, x86_64)\n * rubygem4.0-rdoc-7.0.3-33.3.hum1 (noarch)\n * rubygem4.0-rexml-3.4.4-33.3.hum1 (noarch)\n * rubygem4.0-rss-0.3.2-33.3.hum1 (noarch)\n * rubygem4.0-rubygems-4.0.3-33.3.hum1 (noarch)\n * rubygem4.0-test-unit-3.7.5-33.3.hum1 (noarch)\n * rubygem4.0-typeprof-0.31.1-33.3.hum1 (noarch)\n * ruby4.0-4.0.0-33.3.hum1.src (src)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:8838",
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
},
{
"category": "external",
"summary": "https://images.redhat.com/",
"url": "https://images.redhat.com/"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27820",
"url": "https://access.redhat.com/security/cve/CVE-2026-27820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3905",
"url": "https://access.redhat.com/security/cve/CVE-2008-3905"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3657",
"url": "https://access.redhat.com/security/cve/CVE-2008-3657"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3656",
"url": "https://access.redhat.com/security/cve/CVE-2008-3656"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3655",
"url": "https://access.redhat.com/security/cve/CVE-2008-3655"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-27282",
"url": "https://access.redhat.com/security/cve/CVE-2024-27282"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2021-31810",
"url": "https://access.redhat.com/security/cve/CVE-2021-31810"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2019-16254",
"url": "https://access.redhat.com/security/cve/CVE-2019-16254"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2018-8780",
"url": "https://access.redhat.com/security/cve/CVE-2018-8780"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2017-14064",
"url": "https://access.redhat.com/security/cve/CVE-2017-14064"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2017-10784",
"url": "https://access.redhat.com/security/cve/CVE-2017-10784"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2015-9096",
"url": "https://access.redhat.com/security/cve/CVE-2015-9096"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-8090",
"url": "https://access.redhat.com/security/cve/CVE-2014-8090"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-8080",
"url": "https://access.redhat.com/security/cve/CVE-2014-8080"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-6438",
"url": "https://access.redhat.com/security/cve/CVE-2014-6438"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-4975",
"url": "https://access.redhat.com/security/cve/CVE-2014-4975"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2013-1821",
"url": "https://access.redhat.com/security/cve/CVE-2013-1821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2012-5371",
"url": "https://access.redhat.com/security/cve/CVE-2012-5371"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2011-4815",
"url": "https://access.redhat.com/security/cve/CVE-2011-4815"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-1891",
"url": "https://access.redhat.com/security/cve/CVE-2008-1891"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-28756",
"url": "https://access.redhat.com/security/cve/CVE-2023-28756"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2022-28739",
"url": "https://access.redhat.com/security/cve/CVE-2022-28739"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2021-41819",
"url": "https://access.redhat.com/security/cve/CVE-2021-41819"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2021-28965",
"url": "https://access.redhat.com/security/cve/CVE-2021-28965"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2020-25613",
"url": "https://access.redhat.com/security/cve/CVE-2020-25613"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_8838.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update",
"tracking": {
"current_release_date": "2026-04-21T13:32:51+00:00",
"generator": {
"date": "2026-04-21T13:32:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.5"
}
},
"id": "RHSA-2026:8838",
"initial_release_date": "2026-04-17T23:15:06+00:00",
"revision_history": [
{
"date": "2026-04-17T23:15:06+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-21T02:52:53+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-21T13:32:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Hardened Images",
"product": {
"name": "Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:hummingbird:1"
}
}
}
],
"category": "product_family",
"name": "Red Hat Hardened Images"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby4-0-main@aarch64",
"product": {
"name": "ruby4-0-main@aarch64",
"product_id": "ruby4-0-main@aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby4.0@4.0.0-33.3.hum1?arch=aarch64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-aarch64-rpms"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby4-0-main@src",
"product": {
"name": "ruby4-0-main@src",
"product_id": "ruby4-0-main@src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby4.0@4.0.0-33.3.hum1?arch=src\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-source-rpms"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby4-0-main@x86_64",
"product": {
"name": "ruby4-0-main@x86_64",
"product_id": "ruby4-0-main@x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby4.0@4.0.0-33.3.hum1?arch=x86_64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby4-0-main@noarch",
"product": {
"name": "ruby4-0-main@noarch",
"product_id": "ruby4-0-main@noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby4.0-default-gems@4.0.0-33.3.hum1?arch=noarch\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby4-0-main@aarch64 as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby4-0-main@aarch64"
},
"product_reference": "ruby4-0-main@aarch64",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby4-0-main@noarch as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby4-0-main@noarch"
},
"product_reference": "ruby4-0-main@noarch",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby4-0-main@src as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby4-0-main@src"
},
"product_reference": "ruby4-0-main@src",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby4-0-main@x86_64 as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby4-0-main@x86_64"
},
"product_reference": "ruby4-0-main@x86_64",
"relates_to_product_reference": "Red Hat Hardened Images"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2008-1891",
"discovery_date": "2008-04-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "443829"
}
],
"notes": [
{
"category": "description",
"text": "Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2, when using NTFS or FAT filesystems, allows remote attackers to read arbitrary CGI files via a trailing (1) + (plus), (2) %2b (encoded plus), (3) . (dot), (4) %2e (encoded dot), or (5) %20 (encoded space) character in the URI, possibly related to the WEBrick::HTTPServlet::FileHandler and WEBrick::HTTPServer.new functionality and the :DocumentRoot option.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: WEBrick CGI source disclosure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2008-1891\n\nThe risks associated with fixing this flaw outweigh the benefits of the fix. Red Hat does not plan to fix this flaw in Red Hat Enterprise Linux.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-1891"
},
{
"category": "external",
"summary": "RHBZ#443829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=443829"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-1891",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-1891"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-1891",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-1891"
}
],
"release_date": "2008-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: WEBrick CGI source disclosure"
},
{
"cve": "CVE-2008-3655",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "458948"
}
],
"notes": [
{
"category": "description",
"text": "Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via (1) untrace_var, (2) $PROGRAM_NAME, and (3) syslog at safe level 4, and (4) insecure methods at safe levels 1 through 3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: multiple insufficient safe mode restrictions",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3655"
},
{
"category": "external",
"summary": "RHBZ#458948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=458948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3655",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3655"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3655",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3655"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: multiple insufficient safe mode restrictions"
},
{
"cve": "CVE-2008-3656",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "458953"
}
],
"notes": [
{
"category": "description",
"text": "Algorithmic complexity vulnerability in the WEBrick::HTTPUtils.split_header_value function in WEBrick::HTTP::DefaultFileHandler in WEBrick in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted HTTP request that is processed by a backtracking regular expression.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: WEBrick DoS vulnerability (CPU consumption)",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3656"
},
{
"category": "external",
"summary": "RHBZ#458953",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=458953"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3656",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3656"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: WEBrick DoS vulnerability (CPU consumption)"
},
{
"cve": "CVE-2008-3657",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "458966"
}
],
"notes": [
{
"category": "description",
"text": "The dl module in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not check \"taintness\" of inputs, which allows context-dependent attackers to bypass safe levels and execute dangerous functions by accessing a library using DL.dlopen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: missing \"taintness\" checks in dl module",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3657"
},
{
"category": "external",
"summary": "RHBZ#458966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=458966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3657",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3657"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3657",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3657"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: missing \"taintness\" checks in dl module"
},
{
"cve": "CVE-2008-3905",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "461495"
}
],
"notes": [
{
"category": "description",
"text": "resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 and earlier uses sequential transaction IDs and constant source ports for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: use of predictable source port and transaction id in DNS requests done by resolv.rb module",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3905"
},
{
"category": "external",
"summary": "RHBZ#461495",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=461495"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3905",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3905"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3905",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3905"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: use of predictable source port and transaction id in DNS requests done by resolv.rb module"
},
{
"acknowledgments": [
{
"names": [
"oCERT"
]
}
],
"cve": "CVE-2011-4815",
"discovery_date": "2011-11-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "750564"
}
],
"notes": [
{
"category": "description",
"text": "Ruby (aka CRuby) before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: hash table collisions CPU usage DoS (oCERT-2011-003)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-4815"
},
{
"category": "external",
"summary": "RHBZ#750564",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750564"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-4815",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4815"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4815",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4815"
}
],
"release_date": "2011-12-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: hash table collisions CPU usage DoS (oCERT-2011-003)"
},
{
"cve": "CVE-2012-5371",
"discovery_date": "2012-11-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "875236"
}
],
"notes": [
{
"category": "description",
"text": "Ruby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against a variant of the MurmurHash2 algorithm, a different vulnerability than CVE-2011-4815.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Murmur hash-flooding DoS flaw in ruby 1.9 (oCERT-2012-001)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Not vulnerable. This issue did not affect the versions of ruby as shipped with Red Hat Enterprise Linux 5 and 6.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-5371"
},
{
"category": "external",
"summary": "RHBZ#875236",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=875236"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-5371",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5371"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5371",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5371"
}
],
"release_date": "2012-11-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Murmur hash-flooding DoS flaw in ruby 1.9 (oCERT-2012-001)"
},
{
"cve": "CVE-2013-1821",
"discovery_date": "2013-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "914716"
}
],
"notes": [
{
"category": "description",
"text": "lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: entity expansion DoS vulnerability in REXML",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1821"
},
{
"category": "external",
"summary": "RHBZ#914716",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=914716"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1821",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1821"
},
{
"category": "external",
"summary": "http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22/",
"url": "http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22/"
}
],
"release_date": "2013-02-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: entity expansion DoS vulnerability in REXML"
},
{
"cve": "CVE-2014-4975",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2014-07-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1118158"
}
],
"notes": [
{
"category": "description",
"text": "Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a denial of service (segmentation fault) via vectors that trigger a stack-based buffer overflow.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: off-by-one stack-based buffer overflow in the encodes() function",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of ruby as shipped with Red Hat Enterprise Linux 5 and 6.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-4975"
},
{
"category": "external",
"summary": "RHBZ#1118158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1118158"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-4975",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-4975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-4975"
}
],
"release_date": "2014-07-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: off-by-one stack-based buffer overflow in the encodes() function"
},
{
"cve": "CVE-2014-6438",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2015-07-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1490845"
}
],
"notes": [
{
"category": "description",
"text": "The URI.decode_www_form_component method in Ruby before 1.9.2-p330 allows remote attackers to cause a denial of service (catastrophic regular expression backtracking, resource consumption, or application crash) via a crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Unsafe parsing of long strings via decode_www_form_component method",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-6438"
},
{
"category": "external",
"summary": "RHBZ#1490845",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1490845"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-6438",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-6438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-6438"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2014/08/19/ruby-1-9-2-p330-released/",
"url": "https://www.ruby-lang.org/en/news/2014/08/19/ruby-1-9-2-p330-released/"
}
],
"release_date": "2014-08-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Unsafe parsing of long strings via decode_www_form_component method"
},
{
"cve": "CVE-2014-8080",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2014-10-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1157709"
}
],
"notes": [
{
"category": "description",
"text": "The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: REXML billion laughs attack via parameter entity expansion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat JBoss SOA Platform 5 is now in Maintenance Support phase receiving only qualified Important and Critical impact security fixes; and Red Hat JBoss SOA Platform 4.3 is now in Extended Life Support phase receiving only Critical impact security fixes. This issue has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat JBoss Middleware Product Life Cycle: https://access.redhat.com/support/policy/updates/jboss_notes/",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-8080"
},
{
"category": "external",
"summary": "RHBZ#1157709",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1157709"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-8080",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8080"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8080",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8080"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2014/10/27/rexml-dos-cve-2014-8080/",
"url": "https://www.ruby-lang.org/en/news/2014/10/27/rexml-dos-cve-2014-8080/"
}
],
"release_date": "2014-10-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: REXML billion laughs attack via parameter entity expansion"
},
{
"acknowledgments": [
{
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2014-8090",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2014-10-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1159927"
}
],
"notes": [
{
"category": "description",
"text": "The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nested entity references, aka an XML Entity Expansion (XEE) attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1821 and CVE-2014-8080.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: REXML incomplete fix for CVE-2014-8080",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat JBoss SOA Platform 5 is now in Maintenance Support phase receiving only qualified Important and Critical impact security fixes; and Red Hat JBoss SOA Platform 4.3 is now in Extended Life Support phase receiving only Critical impact security fixes. This issue has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat JBoss Middleware Product Life Cycle: https://access.redhat.com/support/policy/updates/jboss_notes/",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-8090"
},
{
"category": "external",
"summary": "RHBZ#1159927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1159927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-8090",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8090"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8090",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8090"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/",
"url": "https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/"
}
],
"release_date": "2014-11-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: REXML incomplete fix for CVE-2014-8080"
},
{
"cve": "CVE-2015-9096",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2017-06-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461846"
}
],
"notes": [
{
"category": "description",
"text": "A SMTP command injection flaw was found in the way Ruby\u0027s Net::SMTP module handled CRLF sequences in certain SMTP commands. An attacker could potentially use this flaw to inject SMTP commands in a SMTP session in order to facilitate phishing attacks or spam campaigns.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-9096"
},
{
"category": "external",
"summary": "RHBZ#1461846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461846"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-9096",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-9096"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-9096",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-9096"
}
],
"release_date": "2017-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP"
},
{
"cve": "CVE-2017-10784",
"cwe": {
"id": "CWE-117",
"name": "Improper Output Neutralization for Logs"
},
"discovery_date": "2017-09-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1492012"
}
],
"notes": [
{
"category": "description",
"text": "It was found that WEBrick did not sanitize all its log messages. If logs were printed in a terminal, an attacker could interact with the terminal via the use of escape sequences.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Escape sequence injection vulnerability in the Basic authentication of WEBrick",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of ruby as shipped with Red Hat Enterprise Linux 5, 6, and 7, as well as the versions of rh-ruby22-ruby and rh-ruby23-ruby as shipped with Red Hat Software Collections 3. Red Hat Product Security has rated this issue as having Moderate security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10784"
},
{
"category": "external",
"summary": "RHBZ#1492012",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1492012"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10784",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10784"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10784",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10784"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/",
"url": "https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/"
}
],
"release_date": "2017-09-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Escape sequence injection vulnerability in the Basic authentication of WEBrick"
},
{
"cve": "CVE-2017-14064",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-08-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1487552"
}
],
"notes": [
{
"category": "description",
"text": "A buffer overflow vulnerability was found in the JSON extension of ruby. An attacker with the ability to pass a specially crafted JSON input to the extension could use this flaw to expose the interpreter\u0027s heap memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Arbitrary heap exposure during a JSON.generate call",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of ruby as shipped with Red Hat Enterprise Linux 5, and 6. These versions do not include the JSON module.\n\nThis issue affects the versions of ruby as shipped with Red Hat Enterprise Linux 7, as well as the versions of rh-ruby22-ruby and rh-ruby23-ruby as shipped with Red Hat Software Collections. Red Hat Product Security has rated this issue as having Low security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14064"
},
{
"category": "external",
"summary": "RHBZ#1487552",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1487552"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14064",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14064"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14064",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14064"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2017/09/14/json-heap-exposure-cve-2017-14064/",
"url": "https://www.ruby-lang.org/en/news/2017/09/14/json-heap-exposure-cve-2017-14064/"
}
],
"release_date": "2017-03-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: Arbitrary heap exposure during a JSON.generate call"
},
{
"cve": "CVE-2018-8780",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-03-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1561949"
}
],
"notes": [
{
"category": "description",
"text": "It was found that the methods from the Dir class did not properly handle strings containing the NULL byte. An attacker, able to inject NULL bytes in a path, could possibly trigger an unspecified behavior of the ruby script.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Unintentional directory traversal by poisoned NULL byte in Dir",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of ruby as shipped with Red Hat CloudForms 4. Red Hat Product Security has rated this issue as having security impact of Moderate. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.\n\nThis issue affects the versions of ruby as shipped with Red Hat Subscription Asset Manager 1. Red Hat Product Security has rated this issue as having security impact of Moderate. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-8780"
},
{
"category": "external",
"summary": "RHBZ#1561949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1561949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-8780",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-8780"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-8780",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-8780"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-dir-cve-2018-8780/",
"url": "https://www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-dir-cve-2018-8780/"
}
],
"release_date": "2018-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
},
{
"category": "workaround",
"details": "It is possible to test for presence of the NULL byte manually prior to call a Dir method with an untrusted string.",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Unintentional directory traversal by poisoned NULL byte in Dir"
},
{
"cve": "CVE-2019-16254",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2020-01-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1789556"
}
],
"notes": [
{
"category": "description",
"text": "Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients. NOTE: this issue exists because of an incomplete fix for CVE-2017-17742, which addressed the CRLF vector, but did not address an isolated CR or an isolated LF.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: HTTP response splitting in WEBrick",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-16254"
},
{
"category": "external",
"summary": "RHBZ#1789556",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1789556"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-16254",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16254"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-16254",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16254"
}
],
"release_date": "2019-10-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: HTTP response splitting in WEBrick"
},
{
"cve": "CVE-2020-25613",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2020-09-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1883623"
}
],
"notes": [
{
"category": "description",
"text": "An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which also has a poor header check), which may lead to an HTTP Request Smuggling attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Potential HTTP request smuggling in WEBrick",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25613"
},
{
"category": "external",
"summary": "RHBZ#1883623",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1883623"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25613",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25613"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25613",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25613"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/",
"url": "https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/"
}
],
"release_date": "2020-09-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Potential HTTP request smuggling in WEBrick"
},
{
"cve": "CVE-2021-28965",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"discovery_date": "2021-04-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1947526"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way the Ruby REXML library parsed XML documents. Parsing a specially crafted XML document using REXML and writing parsed data back to a new XML document results in creating a document with a different structure. This issue could affect the integrity of processed data in applications using REXML that parse XML documents, write data back to XML, and re-parse them again.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: XML round-trip vulnerability in REXML",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-28965"
},
{
"category": "external",
"summary": "RHBZ#1947526",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1947526"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-28965",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-28965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-28965"
}
],
"release_date": "2021-04-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: XML round-trip vulnerability in REXML"
},
{
"cve": "CVE-2021-31810",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2021-07-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1980126"
}
],
"notes": [
{
"category": "description",
"text": "Ruby\u0027s Net::FTP module trusted the IP address included in the FTP server\u0027s response to the PASV command. A malicious FTP server could use this to make Ruby applications using the Net::FTP module to connect to arbitrary hosts and use this to perform port scanning or information extraction from systems not accessible from the FTP server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat CloudForms 5.11 does not ship Ruby or RubyGem net-ftp and thus not affected by the flaw. RubyGem net-sftp (Ruby implementation of Secure File Transfer Protocol) which product ship is different library component from the affected package.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-31810"
},
{
"category": "external",
"summary": "RHBZ#1980126",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1980126"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-31810",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-31810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-31810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-31810"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2021/07/07/trusting-pasv-responses-in-net-ftp/",
"url": "https://www.ruby-lang.org/en/news/2021/07/07/trusting-pasv-responses-in-net-ftp/"
}
],
"release_date": "2021-07-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host"
},
{
"cve": "CVE-2021-41819",
"discovery_date": "2021-11-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2026757"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Ruby. RubyGems cgi gem could allow a remote attacker to conduct spoofing attacks caused by the mishandling of security prefixes in cookie names in the CGI::Cookie.parse function. By sending a specially-crafted request, an attacker could perform cookie prefix spoofing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Cookie prefix spoofing in CGI::Cookie.parse",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-41819"
},
{
"category": "external",
"summary": "RHBZ#2026757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026757"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-41819",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41819"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-41819",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41819"
}
],
"release_date": "2021-11-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Cookie prefix spoofing in CGI::Cookie.parse"
},
{
"cve": "CVE-2022-28739",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2022-04-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2075687"
}
],
"notes": [
{
"category": "description",
"text": "A buffer overrun vulnerability was found in Ruby. The issue occurs in a conversion algorithm from a String to a Float that causes process termination due to a segmentation fault, but under limited circumstances. This flaw may cause an illegal memory read.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Buffer overrun in String-to-Float conversion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-28739"
},
{
"category": "external",
"summary": "RHBZ#2075687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2075687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-28739",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28739"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-28739",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28739"
},
{
"category": "external",
"summary": "http://www.ruby-lang.org/en/news/2022/04/12/buffer-overrun-in-string-to-float-cve-2022-28739/",
"url": "http://www.ruby-lang.org/en/news/2022/04/12/buffer-overrun-in-string-to-float-cve-2022-28739/"
}
],
"release_date": "2022-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Buffer overrun in String-to-Float conversion"
},
{
"cve": "CVE-2023-28756",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2023-04-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184061"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Time gem and Time library of Ruby. The Time parser mishandles invalid strings with specific characters and causes an increase in execution time for parsing strings to Time objects. This issue may result in a Regular expression denial of service (ReDoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: ReDoS vulnerability in Time",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-28756"
},
{
"category": "external",
"summary": "RHBZ#2184061",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184061"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-28756",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-28756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-28756"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/",
"url": "https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/"
}
],
"release_date": "2023-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: ReDoS vulnerability in Time"
},
{
"cve": "CVE-2024-27282",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276810"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Ruby. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Arbitrary memory address read vulnerability with Regex search",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The CVE-2024-27282 vulnerability in Ruby is classified as a Moderate severity issue due to its potential to expose arbitrary heap data relative to the start of the text through the Ruby regex compiler. While the vulnerability allows the extraction of pointers and sensitive strings from memory, its exploitation requires attacker-supplied data to be provided to the regex compiler. This means that an attacker would need to craft specific input to exploit the issue, limiting the ease of exploitation compared to vulnerabilities that might be remotely exploitable without user interaction.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-27282"
},
{
"category": "external",
"summary": "RHBZ#2276810",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276810"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-27282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27282"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/",
"url": "https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Arbitrary memory address read vulnerability with Regex search"
},
{
"cve": "CVE-2026-27820",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-16T18:00:53.206650+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2459002"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in zlib, a Ruby interface for the zlib compression/decompression library. The Zlib::GzipReader component contains a buffer overflow vulnerability. This occurs because the zstream_buffer_ungets function does not ensure sufficient memory capacity before moving existing data, which can lead to memory corruption. An attacker could potentially exploit this to cause unexpected behavior or system instability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "zlib: zlib: Memory corruption via buffer overflow in Zlib::GzipReader",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A buffer overflow vulnerability exists in the Zlib::GzipReader component of the Ruby zlib interface. This flaw, caused by insufficient memory capacity during data manipulation, could lead to memory corruption and system instability. This vulnerability is considered of a Moderate severity this happens because the high complexity to exploit, additionally the attacker may have not full control over the data is being corrupted or exfiltrated.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27820"
},
{
"category": "external",
"summary": "RHBZ#2459002",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459002"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27820"
},
{
"category": "external",
"summary": "https://github.com/ruby/zlib/security/advisories/GHSA-g857-hhfv-j68w",
"url": "https://github.com/ruby/zlib/security/advisories/GHSA-g857-hhfv-j68w"
},
{
"category": "external",
"summary": "https://hackerone.com/reports/3467067",
"url": "https://hackerone.com/reports/3467067"
}
],
"release_date": "2026-04-16T17:27:48.944000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-17T23:15:06+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:8838"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby4-0-main@aarch64",
"Red Hat Hardened Images:ruby4-0-main@noarch",
"Red Hat Hardened Images:ruby4-0-main@src",
"Red Hat Hardened Images:ruby4-0-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "zlib: zlib: Memory corruption via buffer overflow in Zlib::GzipReader"
}
]
}
RHSA-2026:7307
Vulnerability from csaf_redhat - Published: 2026-04-09 12:37 - Updated: 2026-04-21 13:32Summary
Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update
Severity
Moderate
Notes
Topic: An update for Red Hat Hardened Images RPMs is now available.
Details: This update includes the following RPMs:
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2, when using NTFS or FAT filesystems, allows remote attackers to read arbitrary CGI files via a trailing (1) + (plus), (2) %2b (encoded plus), (3) . (dot), (4) %2e (encoded dot), or (5) %20 (encoded space) character in the URI, possibly related to the WEBrick::HTTPServlet::FileHandler and WEBrick::HTTPServer.new functionality and the :DocumentRoot option.
5.0 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via (1) untrace_var, (2) $PROGRAM_NAME, and (3) syslog at safe level 4, and (4) insecure methods at safe levels 1 through 3.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
Algorithmic complexity vulnerability in the WEBrick::HTTPUtils.split_header_value function in WEBrick::HTTP::DefaultFileHandler in WEBrick in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted HTTP request that is processed by a backtracking regular expression.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
The dl module in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not check "taintness" of inputs, which allows context-dependent attackers to bypass safe levels and execute dangerous functions by accessing a library using DL.dlopen.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 and earlier uses sequential transaction IDs and constant source ports for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447.
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
Ruby (aka CRuby) before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.
5.0 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
Ruby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against a variant of the MurmurHash2 algorithm, a different vulnerability than CVE-2011-4815.
5.0 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.
4.3 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a denial of service (segmentation fault) via vectors that trigger a stack-based buffer overflow.
2.6 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
The URI.decode_www_form_component method in Ruby before 1.9.2-p330 allows remote attackers to cause a denial of service (catastrophic regular expression backtracking, resource consumption, or application crash) via a crafted string.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.
4.3 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nested entity references, aka an XML Entity Expansion (XEE) attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1821 and CVE-2014-8080.
4.3 ()
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
A SMTP command injection flaw was found in the way Ruby's Net::SMTP module handled CRLF sequences in certain SMTP commands. An attacker could potentially use this flaw to inject SMTP commands in a SMTP session in order to facilitate phishing attacks or spam campaigns.
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
It was found that WEBrick did not sanitize all its log messages. If logs were printed in a terminal, an attacker could interact with the terminal via the use of escape sequences.
5.4 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
A buffer overflow vulnerability was found in the JSON extension of ruby. An attacker with the ability to pass a specially crafted JSON input to the extension could use this flaw to expose the interpreter's heap memory.
5.9 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
It was found that the methods from the Dir class did not properly handle strings containing the NULL byte. An attacker, able to inject NULL bytes in a path, could possibly trigger an unspecified behavior of the ruby script.
6.5 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
Workaround
It is possible to test for presence of the NULL byte manually prior to call a Dir method with an untrusted string.
Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients. NOTE: this issue exists because of an incomplete fix for CVE-2017-17742, which addressed the CRLF vector, but did not address an isolated CR or an isolated LF.
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which also has a poor header check), which may lead to an HTTP Request Smuggling attack.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
A flaw was found in the way the Ruby REXML library parsed XML documents. Parsing a specially crafted XML document using REXML and writing parsed data back to a new XML document results in creating a document with a different structure. This issue could affect the integrity of processed data in applications using REXML that parse XML documents, write data back to XML, and re-parse them again.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
Ruby's Net::FTP module trusted the IP address included in the FTP server's response to the PASV command. A malicious FTP server could use this to make Ruby applications using the Net::FTP module to connect to arbitrary hosts and use this to perform port scanning or information extraction from systems not accessible from the FTP server.
5.4 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
A flaw was found in Ruby. RubyGems cgi gem could allow a remote attacker to conduct spoofing attacks caused by the mishandling of security prefixes in cookie names in the CGI::Cookie.parse function. By sending a specially-crafted request, an attacker could perform cookie prefix spoofing attacks.
7.5 (High)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
A buffer overrun vulnerability was found in Ruby. The issue occurs in a conversion algorithm from a String to a Float that causes process termination due to a segmentation fault, but under limited circumstances. This flaw may cause an illegal memory read.
6.2 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
A flaw was found in the Time gem and Time library of Ruby. The Time parser mishandles invalid strings with specific characters and causes an increase in execution time for parsing strings to Time objects. This issue may result in a Regular expression denial of service (ReDoS).
5.3 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
A flaw was found in Ruby. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings.
6.6 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
Workaround
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
A flaw was found in zlib, a Ruby interface for the zlib compression/decompression library. The Zlib::GzipReader component contains a buffer overflow vulnerability. This occurs because the zstream_buffer_ungets function does not ensure sufficient memory capacity before moving existing data, which can lead to memory corruption. An attacker could potentially exploit this to cause unexpected behavior or system instability.
5.6 (Medium)
Vendor Fix
For details on how to apply this update, which includes the changes described in this advisory, refer to:
https://images.redhat.com/
https://access.redhat.com/errata/RHSA-2026:7307
Workaround
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.
References
| URL | Category | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
Acknowledgments
oCERT
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for Red Hat Hardened Images RPMs is now available.",
"title": "Topic"
},
{
"category": "general",
"text": "This update includes the following RPMs:",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:7307",
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
},
{
"category": "external",
"summary": "https://images.redhat.com/",
"url": "https://images.redhat.com/"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27820",
"url": "https://access.redhat.com/security/cve/CVE-2026-27820"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3905",
"url": "https://access.redhat.com/security/cve/CVE-2008-3905"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3657",
"url": "https://access.redhat.com/security/cve/CVE-2008-3657"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3656",
"url": "https://access.redhat.com/security/cve/CVE-2008-3656"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-3655",
"url": "https://access.redhat.com/security/cve/CVE-2008-3655"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-27282",
"url": "https://access.redhat.com/security/cve/CVE-2024-27282"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2021-31810",
"url": "https://access.redhat.com/security/cve/CVE-2021-31810"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2019-16254",
"url": "https://access.redhat.com/security/cve/CVE-2019-16254"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2018-8780",
"url": "https://access.redhat.com/security/cve/CVE-2018-8780"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2017-14064",
"url": "https://access.redhat.com/security/cve/CVE-2017-14064"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2017-10784",
"url": "https://access.redhat.com/security/cve/CVE-2017-10784"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2015-9096",
"url": "https://access.redhat.com/security/cve/CVE-2015-9096"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-8090",
"url": "https://access.redhat.com/security/cve/CVE-2014-8090"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-8080",
"url": "https://access.redhat.com/security/cve/CVE-2014-8080"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-6438",
"url": "https://access.redhat.com/security/cve/CVE-2014-6438"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2014-4975",
"url": "https://access.redhat.com/security/cve/CVE-2014-4975"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2013-1821",
"url": "https://access.redhat.com/security/cve/CVE-2013-1821"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2012-5371",
"url": "https://access.redhat.com/security/cve/CVE-2012-5371"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2011-4815",
"url": "https://access.redhat.com/security/cve/CVE-2011-4815"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2008-1891",
"url": "https://access.redhat.com/security/cve/CVE-2008-1891"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-28756",
"url": "https://access.redhat.com/security/cve/CVE-2023-28756"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2022-28739",
"url": "https://access.redhat.com/security/cve/CVE-2022-28739"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2021-41819",
"url": "https://access.redhat.com/security/cve/CVE-2021-41819"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2021-28965",
"url": "https://access.redhat.com/security/cve/CVE-2021-28965"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2020-25613",
"url": "https://access.redhat.com/security/cve/CVE-2020-25613"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_7307.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Hardened Images RPMs bug fix and enhancement update",
"tracking": {
"current_release_date": "2026-04-21T13:32:50+00:00",
"generator": {
"date": "2026-04-21T13:32:50+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.5"
}
},
"id": "RHSA-2026:7307",
"initial_release_date": "2026-04-09T12:37:08+00:00",
"revision_history": [
{
"date": "2026-04-09T12:37:08+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-04-21T02:53:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-21T13:32:50+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Hardened Images",
"product": {
"name": "Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:hummingbird:1"
}
}
}
],
"category": "product_family",
"name": "Red Hat Hardened Images"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3-4-main@aarch64",
"product": {
"name": "ruby3-4-main@aarch64",
"product_id": "ruby3-4-main@aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby3.4@3.4.8-31.1.hum1?arch=aarch64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-aarch64-rpms"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3-4-main@src",
"product": {
"name": "ruby3-4-main@src",
"product_id": "ruby3-4-main@src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby3.4@3.4.8-31.1.hum1?arch=src\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-source-rpms"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3-4-main@x86_64",
"product": {
"name": "ruby3-4-main@x86_64",
"product_id": "ruby3-4-main@x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby3.4@3.4.8-31.1.hum1?arch=x86_64\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "ruby3-4-main@noarch",
"product": {
"name": "ruby3-4-main@noarch",
"product_id": "ruby3-4-main@noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ruby3.4-default-gems@3.4.8-31.1.hum1?arch=noarch\u0026distro=hummingbird-20251124\u0026repository_id=public-hummingbird-x86_64-rpms"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3-4-main@aarch64 as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby3-4-main@aarch64"
},
"product_reference": "ruby3-4-main@aarch64",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3-4-main@noarch as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby3-4-main@noarch"
},
"product_reference": "ruby3-4-main@noarch",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3-4-main@src as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby3-4-main@src"
},
"product_reference": "ruby3-4-main@src",
"relates_to_product_reference": "Red Hat Hardened Images"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ruby3-4-main@x86_64 as a component of Red Hat Hardened Images",
"product_id": "Red Hat Hardened Images:ruby3-4-main@x86_64"
},
"product_reference": "ruby3-4-main@x86_64",
"relates_to_product_reference": "Red Hat Hardened Images"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2008-1891",
"discovery_date": "2008-04-18T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "443829"
}
],
"notes": [
{
"category": "description",
"text": "Directory traversal vulnerability in WEBrick in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2, when using NTFS or FAT filesystems, allows remote attackers to read arbitrary CGI files via a trailing (1) + (plus), (2) %2b (encoded plus), (3) . (dot), (4) %2e (encoded dot), or (5) %20 (encoded space) character in the URI, possibly related to the WEBrick::HTTPServlet::FileHandler and WEBrick::HTTPServer.new functionality and the :DocumentRoot option.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: WEBrick CGI source disclosure",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2008-1891\n\nThe risks associated with fixing this flaw outweigh the benefits of the fix. Red Hat does not plan to fix this flaw in Red Hat Enterprise Linux.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-1891"
},
{
"category": "external",
"summary": "RHBZ#443829",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=443829"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-1891",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-1891"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-1891",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-1891"
}
],
"release_date": "2008-04-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 5.0,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: WEBrick CGI source disclosure"
},
{
"cve": "CVE-2008-3655",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "458948"
}
],
"notes": [
{
"category": "description",
"text": "Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not properly restrict access to critical variables and methods at various safe levels, which allows context-dependent attackers to bypass intended access restrictions via (1) untrace_var, (2) $PROGRAM_NAME, and (3) syslog at safe level 4, and (4) insecure methods at safe levels 1 through 3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: multiple insufficient safe mode restrictions",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3655"
},
{
"category": "external",
"summary": "RHBZ#458948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=458948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3655",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3655"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3655",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3655"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: multiple insufficient safe mode restrictions"
},
{
"cve": "CVE-2008-3656",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "458953"
}
],
"notes": [
{
"category": "description",
"text": "Algorithmic complexity vulnerability in the WEBrick::HTTPUtils.split_header_value function in WEBrick::HTTP::DefaultFileHandler in WEBrick in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted HTTP request that is processed by a backtracking regular expression.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: WEBrick DoS vulnerability (CPU consumption)",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3656"
},
{
"category": "external",
"summary": "RHBZ#458953",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=458953"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3656",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3656"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3656",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3656"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: WEBrick DoS vulnerability (CPU consumption)"
},
{
"cve": "CVE-2008-3657",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "458966"
}
],
"notes": [
{
"category": "description",
"text": "The dl module in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 does not check \"taintness\" of inputs, which allows context-dependent attackers to bypass safe levels and execute dangerous functions by accessing a library using DL.dlopen.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: missing \"taintness\" checks in dl module",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3657"
},
{
"category": "external",
"summary": "RHBZ#458966",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=458966"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3657",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3657"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3657",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3657"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: missing \"taintness\" checks in dl module"
},
{
"cve": "CVE-2008-3905",
"discovery_date": "2008-08-08T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "461495"
}
],
"notes": [
{
"category": "description",
"text": "resolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423 and earlier uses sequential transaction IDs and constant source ports for DNS requests, which makes it easier for remote attackers to spoof DNS responses, a different vulnerability than CVE-2008-1447.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: use of predictable source port and transaction id in DNS requests done by resolv.rb module",
"title": "Vulnerability summary"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2008-3905"
},
{
"category": "external",
"summary": "RHBZ#461495",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=461495"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2008-3905",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-3905"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2008-3905",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2008-3905"
}
],
"release_date": "2008-08-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: use of predictable source port and transaction id in DNS requests done by resolv.rb module"
},
{
"acknowledgments": [
{
"names": [
"oCERT"
]
}
],
"cve": "CVE-2011-4815",
"discovery_date": "2011-11-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "750564"
}
],
"notes": [
{
"category": "description",
"text": "Ruby (aka CRuby) before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: hash table collisions CPU usage DoS (oCERT-2011-003)",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2011-4815"
},
{
"category": "external",
"summary": "RHBZ#750564",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=750564"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2011-4815",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-4815"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2011-4815",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2011-4815"
}
],
"release_date": "2011-12-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: hash table collisions CPU usage DoS (oCERT-2011-003)"
},
{
"cve": "CVE-2012-5371",
"discovery_date": "2012-11-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "875236"
}
],
"notes": [
{
"category": "description",
"text": "Ruby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes hash values without properly restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via crafted input to an application that maintains a hash table, as demonstrated by a universal multicollision attack against a variant of the MurmurHash2 algorithm, a different vulnerability than CVE-2011-4815.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Murmur hash-flooding DoS flaw in ruby 1.9 (oCERT-2012-001)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Not vulnerable. This issue did not affect the versions of ruby as shipped with Red Hat Enterprise Linux 5 and 6.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2012-5371"
},
{
"category": "external",
"summary": "RHBZ#875236",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=875236"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2012-5371",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5371"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2012-5371",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5371"
}
],
"release_date": "2012-11-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Murmur hash-flooding DoS flaw in ruby 1.9 (oCERT-2012-001)"
},
{
"cve": "CVE-2013-1821",
"discovery_date": "2013-02-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "914716"
}
],
"notes": [
{
"category": "description",
"text": "lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: entity expansion DoS vulnerability in REXML",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2013-1821"
},
{
"category": "external",
"summary": "RHBZ#914716",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=914716"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2013-1821",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1821"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2013-1821",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2013-1821"
},
{
"category": "external",
"summary": "http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22/",
"url": "http://www.ruby-lang.org/en/news/2013/02/22/rexml-dos-2013-02-22/"
}
],
"release_date": "2013-02-22T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: entity expansion DoS vulnerability in REXML"
},
{
"cve": "CVE-2014-4975",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2014-07-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1118158"
}
],
"notes": [
{
"category": "description",
"text": "Off-by-one error in the encodes function in pack.c in Ruby 1.9.3 and earlier, and 2.x through 2.1.2, when using certain format string specifiers, allows context-dependent attackers to cause a denial of service (segmentation fault) via vectors that trigger a stack-based buffer overflow.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: off-by-one stack-based buffer overflow in the encodes() function",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of ruby as shipped with Red Hat Enterprise Linux 5 and 6.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-4975"
},
{
"category": "external",
"summary": "RHBZ#1118158",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1118158"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-4975",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4975"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-4975",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-4975"
}
],
"release_date": "2014-07-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "HIGH",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 2.6,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:H/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: off-by-one stack-based buffer overflow in the encodes() function"
},
{
"cve": "CVE-2014-6438",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2015-07-13T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1490845"
}
],
"notes": [
{
"category": "description",
"text": "The URI.decode_www_form_component method in Ruby before 1.9.2-p330 allows remote attackers to cause a denial of service (catastrophic regular expression backtracking, resource consumption, or application crash) via a crafted string.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Unsafe parsing of long strings via decode_www_form_component method",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-6438"
},
{
"category": "external",
"summary": "RHBZ#1490845",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1490845"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-6438",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-6438"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-6438",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-6438"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2014/08/19/ruby-1-9-2-p330-released/",
"url": "https://www.ruby-lang.org/en/news/2014/08/19/ruby-1-9-2-p330-released/"
}
],
"release_date": "2014-08-19T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Unsafe parsing of long strings via decode_www_form_component method"
},
{
"cve": "CVE-2014-8080",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2014-10-27T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1157709"
}
],
"notes": [
{
"category": "description",
"text": "The REXML parser in Ruby 1.9.x before 1.9.3-p550, 2.0.x before 2.0.0-p594, and 2.1.x before 2.1.4 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML document, aka an XML Entity Expansion (XEE) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: REXML billion laughs attack via parameter entity expansion",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat JBoss SOA Platform 5 is now in Maintenance Support phase receiving only qualified Important and Critical impact security fixes; and Red Hat JBoss SOA Platform 4.3 is now in Extended Life Support phase receiving only Critical impact security fixes. This issue has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat JBoss Middleware Product Life Cycle: https://access.redhat.com/support/policy/updates/jboss_notes/",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-8080"
},
{
"category": "external",
"summary": "RHBZ#1157709",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1157709"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-8080",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8080"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8080",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8080"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2014/10/27/rexml-dos-cve-2014-8080/",
"url": "https://www.ruby-lang.org/en/news/2014/10/27/rexml-dos-cve-2014-8080/"
}
],
"release_date": "2014-10-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: REXML billion laughs attack via parameter entity expansion"
},
{
"acknowledgments": [
{
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2014-8090",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2014-10-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1159927"
}
],
"notes": [
{
"category": "description",
"text": "The REXML parser in Ruby 1.9.x before 1.9.3 patchlevel 551, 2.0.x before 2.0.0 patchlevel 598, and 2.1.x before 2.1.5 allows remote attackers to cause a denial of service (CPU and memory consumption) a crafted XML document containing an empty string in an entity that is used in a large number of nested entity references, aka an XML Entity Expansion (XEE) attack. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1821 and CVE-2014-8080.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: REXML incomplete fix for CVE-2014-8080",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat JBoss SOA Platform 5 is now in Maintenance Support phase receiving only qualified Important and Critical impact security fixes; and Red Hat JBoss SOA Platform 4.3 is now in Extended Life Support phase receiving only Critical impact security fixes. This issue has been rated as having Moderate security impact and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat JBoss Middleware Product Life Cycle: https://access.redhat.com/support/policy/updates/jboss_notes/",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2014-8090"
},
{
"category": "external",
"summary": "RHBZ#1159927",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1159927"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2014-8090",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-8090"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2014-8090",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-8090"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/",
"url": "https://www.ruby-lang.org/en/news/2014/11/13/rexml-dos-cve-2014-8090/"
}
],
"release_date": "2014-11-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: REXML incomplete fix for CVE-2014-8080"
},
{
"cve": "CVE-2015-9096",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2017-06-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1461846"
}
],
"notes": [
{
"category": "description",
"text": "A SMTP command injection flaw was found in the way Ruby\u0027s Net::SMTP module handled CRLF sequences in certain SMTP commands. An attacker could potentially use this flaw to inject SMTP commands in a SMTP session in order to facilitate phishing attacks or spam campaigns.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2015-9096"
},
{
"category": "external",
"summary": "RHBZ#1461846",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1461846"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2015-9096",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-9096"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2015-9096",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2015-9096"
}
],
"release_date": "2017-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP"
},
{
"cve": "CVE-2017-10784",
"cwe": {
"id": "CWE-117",
"name": "Improper Output Neutralization for Logs"
},
"discovery_date": "2017-09-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1492012"
}
],
"notes": [
{
"category": "description",
"text": "It was found that WEBrick did not sanitize all its log messages. If logs were printed in a terminal, an attacker could interact with the terminal via the use of escape sequences.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Escape sequence injection vulnerability in the Basic authentication of WEBrick",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of ruby as shipped with Red Hat Enterprise Linux 5, 6, and 7, as well as the versions of rh-ruby22-ruby and rh-ruby23-ruby as shipped with Red Hat Software Collections 3. Red Hat Product Security has rated this issue as having Moderate security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-10784"
},
{
"category": "external",
"summary": "RHBZ#1492012",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1492012"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-10784",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10784"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-10784",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-10784"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/",
"url": "https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/"
}
],
"release_date": "2017-09-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Escape sequence injection vulnerability in the Basic authentication of WEBrick"
},
{
"cve": "CVE-2017-14064",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2017-08-31T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1487552"
}
],
"notes": [
{
"category": "description",
"text": "A buffer overflow vulnerability was found in the JSON extension of ruby. An attacker with the ability to pass a specially crafted JSON input to the extension could use this flaw to expose the interpreter\u0027s heap memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Arbitrary heap exposure during a JSON.generate call",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue did not affect the versions of ruby as shipped with Red Hat Enterprise Linux 5, and 6. These versions do not include the JSON module.\n\nThis issue affects the versions of ruby as shipped with Red Hat Enterprise Linux 7, as well as the versions of rh-ruby22-ruby and rh-ruby23-ruby as shipped with Red Hat Software Collections. Red Hat Product Security has rated this issue as having Low security impact. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2017-14064"
},
{
"category": "external",
"summary": "RHBZ#1487552",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1487552"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2017-14064",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-14064"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2017-14064",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-14064"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2017/09/14/json-heap-exposure-cve-2017-14064/",
"url": "https://www.ruby-lang.org/en/news/2017/09/14/json-heap-exposure-cve-2017-14064/"
}
],
"release_date": "2017-03-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: Arbitrary heap exposure during a JSON.generate call"
},
{
"cve": "CVE-2018-8780",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2018-03-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1561949"
}
],
"notes": [
{
"category": "description",
"text": "It was found that the methods from the Dir class did not properly handle strings containing the NULL byte. An attacker, able to inject NULL bytes in a path, could possibly trigger an unspecified behavior of the ruby script.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Unintentional directory traversal by poisoned NULL byte in Dir",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue affects the versions of ruby as shipped with Red Hat CloudForms 4. Red Hat Product Security has rated this issue as having security impact of Moderate. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.\n\nThis issue affects the versions of ruby as shipped with Red Hat Subscription Asset Manager 1. Red Hat Product Security has rated this issue as having security impact of Moderate. A future update may address this issue. For additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-8780"
},
{
"category": "external",
"summary": "RHBZ#1561949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1561949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-8780",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-8780"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-8780",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-8780"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-dir-cve-2018-8780/",
"url": "https://www.ruby-lang.org/en/news/2018/03/28/poisoned-nul-byte-dir-cve-2018-8780/"
}
],
"release_date": "2018-03-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
},
{
"category": "workaround",
"details": "It is possible to test for presence of the NULL byte manually prior to call a Dir method with an untrusted string.",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Unintentional directory traversal by poisoned NULL byte in Dir"
},
{
"cve": "CVE-2019-16254",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2020-01-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1789556"
}
],
"notes": [
{
"category": "description",
"text": "Ruby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If a program using WEBrick inserts untrusted input into the response header, an attacker can exploit it to insert a newline character to split a header, and inject malicious content to deceive clients. NOTE: this issue exists because of an incomplete fix for CVE-2017-17742, which addressed the CRLF vector, but did not address an isolated CR or an isolated LF.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: HTTP response splitting in WEBrick",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-16254"
},
{
"category": "external",
"summary": "RHBZ#1789556",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1789556"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-16254",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-16254"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-16254",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-16254"
}
],
"release_date": "2019-10-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "ruby: HTTP response splitting in WEBrick"
},
{
"cve": "CVE-2020-25613",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"discovery_date": "2020-09-29T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1883623"
}
],
"notes": [
{
"category": "description",
"text": "An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not checked the transfer-encoding header value rigorously. An attacker may potentially exploit this issue to bypass a reverse proxy (which also has a poor header check), which may lead to an HTTP Request Smuggling attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Potential HTTP request smuggling in WEBrick",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2020-25613"
},
{
"category": "external",
"summary": "RHBZ#1883623",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1883623"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2020-25613",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-25613"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2020-25613",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-25613"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/",
"url": "https://www.ruby-lang.org/en/news/2020/09/29/http-request-smuggling-cve-2020-25613/"
}
],
"release_date": "2020-09-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Potential HTTP request smuggling in WEBrick"
},
{
"cve": "CVE-2021-28965",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"discovery_date": "2021-04-05T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1947526"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the way the Ruby REXML library parsed XML documents. Parsing a specially crafted XML document using REXML and writing parsed data back to a new XML document results in creating a document with a different structure. This issue could affect the integrity of processed data in applications using REXML that parse XML documents, write data back to XML, and re-parse them again.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: XML round-trip vulnerability in REXML",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-28965"
},
{
"category": "external",
"summary": "RHBZ#1947526",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1947526"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-28965",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-28965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-28965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-28965"
}
],
"release_date": "2021-04-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: XML round-trip vulnerability in REXML"
},
{
"cve": "CVE-2021-31810",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2021-07-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1980126"
}
],
"notes": [
{
"category": "description",
"text": "Ruby\u0027s Net::FTP module trusted the IP address included in the FTP server\u0027s response to the PASV command. A malicious FTP server could use this to make Ruby applications using the Net::FTP module to connect to arbitrary hosts and use this to perform port scanning or information extraction from systems not accessible from the FTP server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat CloudForms 5.11 does not ship Ruby or RubyGem net-ftp and thus not affected by the flaw. RubyGem net-sftp (Ruby implementation of Secure File Transfer Protocol) which product ship is different library component from the affected package.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-31810"
},
{
"category": "external",
"summary": "RHBZ#1980126",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1980126"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-31810",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-31810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-31810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-31810"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2021/07/07/trusting-pasv-responses-in-net-ftp/",
"url": "https://www.ruby-lang.org/en/news/2021/07/07/trusting-pasv-responses-in-net-ftp/"
}
],
"release_date": "2021-07-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host"
},
{
"cve": "CVE-2021-41819",
"discovery_date": "2021-11-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2026757"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Ruby. RubyGems cgi gem could allow a remote attacker to conduct spoofing attacks caused by the mishandling of security prefixes in cookie names in the CGI::Cookie.parse function. By sending a specially-crafted request, an attacker could perform cookie prefix spoofing attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Cookie prefix spoofing in CGI::Cookie.parse",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-41819"
},
{
"category": "external",
"summary": "RHBZ#2026757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2026757"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-41819",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-41819"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-41819",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-41819"
}
],
"release_date": "2021-11-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Cookie prefix spoofing in CGI::Cookie.parse"
},
{
"cve": "CVE-2022-28739",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2022-04-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2075687"
}
],
"notes": [
{
"category": "description",
"text": "A buffer overrun vulnerability was found in Ruby. The issue occurs in a conversion algorithm from a String to a Float that causes process termination due to a segmentation fault, but under limited circumstances. This flaw may cause an illegal memory read.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Buffer overrun in String-to-Float conversion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-28739"
},
{
"category": "external",
"summary": "RHBZ#2075687",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2075687"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-28739",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28739"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-28739",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28739"
},
{
"category": "external",
"summary": "http://www.ruby-lang.org/en/news/2022/04/12/buffer-overrun-in-string-to-float-cve-2022-28739/",
"url": "http://www.ruby-lang.org/en/news/2022/04/12/buffer-overrun-in-string-to-float-cve-2022-28739/"
}
],
"release_date": "2022-04-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Buffer overrun in String-to-Float conversion"
},
{
"cve": "CVE-2023-28756",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2023-04-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184061"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Time gem and Time library of Ruby. The Time parser mishandles invalid strings with specific characters and causes an increase in execution time for parsing strings to Time objects. This issue may result in a Regular expression denial of service (ReDoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: ReDoS vulnerability in Time",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-28756"
},
{
"category": "external",
"summary": "RHBZ#2184061",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184061"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-28756",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28756"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-28756",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-28756"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/",
"url": "https://www.ruby-lang.org/en/news/2023/03/30/redos-in-time-cve-2023-28756/"
}
],
"release_date": "2023-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: ReDoS vulnerability in Time"
},
{
"cve": "CVE-2024-27282",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2024-04-24T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2276810"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Ruby. If attacker-supplied data is provided to the Ruby regex compiler, it is possible to extract arbitrary heap data relative to the start of the text, including pointers and sensitive strings.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "ruby: Arbitrary memory address read vulnerability with Regex search",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The CVE-2024-27282 vulnerability in Ruby is classified as a Moderate severity issue due to its potential to expose arbitrary heap data relative to the start of the text through the Ruby regex compiler. While the vulnerability allows the extraction of pointers and sensitive strings from memory, its exploitation requires attacker-supplied data to be provided to the regex compiler. This means that an attacker would need to craft specific input to exploit the issue, limiting the ease of exploitation compared to vulnerabilities that might be remotely exploitable without user interaction.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-27282"
},
{
"category": "external",
"summary": "RHBZ#2276810",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276810"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-27282",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-27282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-27282"
},
{
"category": "external",
"summary": "https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/",
"url": "https://www.ruby-lang.org/en/news/2024/04/23/arbitrary-memory-address-read-regexp-cve-2024-27282/"
}
],
"release_date": "2024-04-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "ruby: Arbitrary memory address read vulnerability with Regex search"
},
{
"cve": "CVE-2026-27820",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-16T18:00:53.206650+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2459002"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in zlib, a Ruby interface for the zlib compression/decompression library. The Zlib::GzipReader component contains a buffer overflow vulnerability. This occurs because the zstream_buffer_ungets function does not ensure sufficient memory capacity before moving existing data, which can lead to memory corruption. An attacker could potentially exploit this to cause unexpected behavior or system instability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "zlib: zlib: Memory corruption via buffer overflow in Zlib::GzipReader",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A buffer overflow vulnerability exists in the Zlib::GzipReader component of the Ruby zlib interface. This flaw, caused by insufficient memory capacity during data manipulation, could lead to memory corruption and system instability. This vulnerability is considered of a Moderate severity this happens because the high complexity to exploit, additionally the attacker may have not full control over the data is being corrupted or exfiltrated.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27820"
},
{
"category": "external",
"summary": "RHBZ#2459002",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459002"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27820",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27820"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27820",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27820"
},
{
"category": "external",
"summary": "https://github.com/ruby/zlib/security/advisories/GHSA-g857-hhfv-j68w",
"url": "https://github.com/ruby/zlib/security/advisories/GHSA-g857-hhfv-j68w"
},
{
"category": "external",
"summary": "https://hackerone.com/reports/3467067",
"url": "https://hackerone.com/reports/3467067"
}
],
"release_date": "2026-04-16T17:27:48.944000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-04-09T12:37:08+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\nhttps://images.redhat.com/",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:7307"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Hardened Images:ruby3-4-main@aarch64",
"Red Hat Hardened Images:ruby3-4-main@noarch",
"Red Hat Hardened Images:ruby3-4-main@src",
"Red Hat Hardened Images:ruby3-4-main@x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "zlib: zlib: Memory corruption via buffer overflow in Zlib::GzipReader"
}
]
}
CNVD-2017-11882
Vulnerability from cnvd - Published: 2017-06-29
VLAI Severity ?
Title
Ruby命令注入漏洞
Description
Ruby是日本软件开发者松本行弘所研发的一种跨平台、面向对象的动态类型编程语言。
Ruby 2.4.0之前的版本中的Net::SMTP存在命令注入漏洞。攻击者可利用该漏洞注入任意命令。
Severity
高
Patch Name
Ruby命令注入漏洞的补丁
Patch Description
Ruby是日本软件开发者松本行弘所研发的一种跨平台、面向对象的动态类型编程语言。
Ruby 2.4.0之前的版本中的Net::SMTP存在命令注入漏洞。攻击者可利用该漏洞注入任意命令。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://github.com/rubysec/ruby-advisory-db/issues/215
Reference
http://www.mbsd.jp/Whitepaper/smtpi.pdf
Impacted products
| Name | Ruby Ruby <2.4.0 |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2015-9096",
"cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-9096"
}
},
"description": "Ruby\u662f\u65e5\u672c\u8f6f\u4ef6\u5f00\u53d1\u8005\u677e\u672c\u884c\u5f18\u6240\u7814\u53d1\u7684\u4e00\u79cd\u8de8\u5e73\u53f0\u3001\u9762\u5411\u5bf9\u8c61\u7684\u52a8\u6001\u7c7b\u578b\u7f16\u7a0b\u8bed\u8a00\u3002\r\n\r\nRuby 2.4.0\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684Net::SMTP\u5b58\u5728\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4efb\u610f\u547d\u4ee4\u3002",
"discovererName": "unknwon",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://github.com/rubysec/ruby-advisory-db/issues/215",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2017-11882",
"openTime": "2017-06-29",
"patchDescription": "Ruby\u662f\u65e5\u672c\u8f6f\u4ef6\u5f00\u53d1\u8005\u677e\u672c\u884c\u5f18\u6240\u7814\u53d1\u7684\u4e00\u79cd\u8de8\u5e73\u53f0\u3001\u9762\u5411\u5bf9\u8c61\u7684\u52a8\u6001\u7c7b\u578b\u7f16\u7a0b\u8bed\u8a00\u3002\r\n\r\nRuby 2.4.0\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u7684Net::SMTP\u5b58\u5728\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u6ce8\u5165\u4efb\u610f\u547d\u4ee4\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Ruby\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "Ruby Ruby \u003c2.4.0"
},
"referenceLink": "http://www.mbsd.jp/Whitepaper/smtpi.pdf",
"serverity": "\u9ad8",
"submitTime": "2017-06-15",
"title": "Ruby\u547d\u4ee4\u6ce8\u5165\u6f0f\u6d1e"
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…