SUSE-SU-2016:0857-1: moderate: Security update for rubygem-activesupport-4_1

sle-security-updates at lists.suse.com sle-security-updates at lists.suse.com
Tue Mar 22 14:08:15 MDT 2016


   SUSE Security Update: Security update for rubygem-activesupport-4_1
______________________________________________________________________________

Announcement ID:    SUSE-SU-2016:0857-1
Rating:             moderate
References:         #970715 
Cross-References:   CVE-2015-7576
Affected Products:
                    SUSE OpenStack Cloud 5
______________________________________________________________________________

   An update that fixes one vulnerability is now available.

Description:


   This update for rubygem-activesupport-4_1 fixes the following issues:

   The previous security patch for CVE-2015-7576 was adding a new file but
   this file was not being added in the gemspec, thus the resulting gem
   didn't have it. This update includes the patch in the gem file too.


Patch Instructions:

   To install this SUSE Security Update use YaST online_update.
   Alternatively you can run the command listed for your product:

   - SUSE OpenStack Cloud 5:

      zypper in -t patch sleclo50sp3-rubygem-activesupport-4_1-12469=1

   To bring your system up-to-date, use "zypper patch".


Package List:

   - SUSE OpenStack Cloud 5 (x86_64):

      ruby2.1-rubygem-activesupport-4_1-4.1.9-15.1


References:

   https://www.suse.com/security/cve/CVE-2015-7576.html
   https://bugzilla.suse.com/970715



More information about the sle-security-updates mailing list