1. Cybersecurity >
  2. Cybersecurity Nachrichten >
  3. Ausführen beliebiger Kommandos in rubygem-activesupport-5_1 (SUSE)

ArabicEnglishFrenchGermanGreekItalianJapaneseKoreanPersianPolishPortugueseRussianSpanishTurkishVietnamese

Ausführen beliebiger Kommandos in rubygem-activesupport-5_1 (SUSE)


IT Security Nachrichten vom | Direktlink: pro-linux.de Nachrichten Bewertung

...
https://www.pro-linux.de/sicherheit/2/57546/ausf%C3%BChren-beliebiger-kommandos-in-rubygem-activesupport-5_1.html

Externe Quelle mit kompletten Inhalt anzeigen


Zur Startseite von Team IT Security

➤ Weitere Beiträge von Team Security | IT Sicherheit

CVE-2020-8023

vom 211.1 Punkte ic_school_black_18dp
A acceptance of Extraneous Untrusted Data With Trusted Data vulnerability in the start script of openldap2 of SUSE Enterprise Storage 5, SUSE Linux Enterprise Debuginfo 11-SP3, SUSE Linux Enterprise Debuginfo 11-SP4, SUSE Linux Enterprise Point of Sale

CVE-2020-8022

vom 155.55 Punkte ic_school_black_18dp
A Incorrect Default Permissions vulnerability in the packaging of tomcat on SUSE Enterprise Storage 5, SUSE Linux Enterprise Server 12-SP2-BCL, SUSE Linux Enterprise Server 12-SP2-LTSS, SUSE Linux Enterprise Server 12-SP3-BCL, SUSE Linux Enterprise Server

CVE-2019-3696

vom 99.99 Punkte ic_school_black_18dp
A Improper Limitation of a Pathname to a Restricted Directory vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for

CVE-2019-3695

vom 99.99 Punkte ic_school_black_18dp
A Improper Control of Generation of Code vulnerability in the packaging of pcp of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Development Tools 15,

Remote Code Execution via Ruby on Rails Active Storage Insecure Deserialization

vom 95.26 Punkte ic_school_black_18dp
In this excerpt of a Trend Micro Vulnerability Research Service vulnerability report, Sivathmican Sivakumaran and Pengsu Cheng of the Trend Micro Security Research Team detail a recent code execution vulnerability in Ruby on Rails. The bug was origina

SUSE Releases Major Linux Update

vom 83.33 Punkte ic_school_black_18dp
SUSE has released the next versions of its flagship operating system, SUSE Linux Enterprise (SLE) 15 Service Pack 2 and its latest infrastructure management program, SUSE Manager 4.1. ZDNet reports: SLE 15 SP2 is available on the x86-64, Arm, IBM POWER,

Security updates for Wednesday

vom 80.18 Punkte ic_school_black_18dp
Security updates have been issued by Debian (jackson-databind and tomcat8), Fedora (dovecot), Oracle (firefox, spice and spice-gtk, and thunderbird), Red Hat (flash-plugin), SUSE (ansible, crowbar-core, crowbar-openstack, grafana, grafana-natel-discrete-pa

Security updates for Thursday

vom 79.12 Punkte ic_school_black_18dp
Security updates have been issued by CentOS (kernel), Debian (dojo, firefox-esr, sleuthkit, and wpa), Fedora (cacti, cacti-spine, and python-psutil), Oracle (kernel), Red Hat (kernel), Scientific Linux (kernel), SUSE (ardana-ansible, ardana-cinder, arda

CVE-2019-18904

vom 77.77 Punkte ic_school_black_18dp
A Uncontrolled Resource Consumption vulnerability in rmt of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Public Cloud 15-SP1, SUSE Linux Enterprise

Team Security Diskussion über Ausführen beliebiger Kommandos in rubygem-activesupport-5_1 (SUSE)