Test Kennung:	1.3.6.1.4.1.25623.1.0.70710
Kategorie:	Debian Local Security Checks
Titel:	Debian Security Advisory DSA 2301-2 (rails)
Zusammenfassung:	The remote host is missing an update to rails;announced via advisory DSA 2301-2.
Beschreibung:	Summary: The remote host is missing an update to rails announced via advisory DSA 2301-2. Vulnerability Insight: It was discovered that the last security update for Ruby on Rails, DSA-2301-1, introduced a regression in the libactionpack-ruby package. For the oldstable distribution (lenny), this problem has been fixed in version 2.1.0-7+lenny2. For the stable distribution (squeeze), this problem has been fixed in version 2.3.5-1.2+squeeze2. Solution: We recommend that you upgrade your rails packages. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2011-2930 Debian Security Information: DSA-2301 (Google Search) http://www.debian.org/security/2011/dsa-2301 http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065212.html http://www.openwall.com/lists/oss-security/2011/08/17/1 http://www.openwall.com/lists/oss-security/2011/08/19/11 http://www.openwall.com/lists/oss-security/2011/08/20/1 http://www.openwall.com/lists/oss-security/2011/08/22/13 http://www.openwall.com/lists/oss-security/2011/08/22/14 http://www.openwall.com/lists/oss-security/2011/08/22/5 http://groups.google.com/group/rubyonrails-security/msg/b1a85d36b0f9dd30?dmode=source&output=gplain Common Vulnerability Exposure (CVE) ID: CVE-2011-2931 http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065137.html http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065109.html http://groups.google.com/group/rubyonrails-security/msg/fd41ab62966e0fd1?dmode=source&output=gplain http://secunia.com/advisories/45921 Common Vulnerability Exposure (CVE) ID: CVE-2011-3186 http://groups.google.com/group/rubyonrails-security/msg/bbe342e43abaa78c?dmode=source&output=gplain Common Vulnerability Exposure (CVE) ID: CVE-2009-4214 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html BugTraq ID: 37142 http://www.securityfocus.com/bid/37142 Debian Security Information: DSA-2260 (Google Search) http://www.debian.org/security/2011/dsa-2260 http://www.openwall.com/lists/oss-security/2009/11/27/2 http://www.openwall.com/lists/oss-security/2009/12/08/3 http://groups.google.com/group/rubyonrails-security/browse_thread/thread/4d4f71f2aef4c0ab?pli=1 http://www.securitytracker.com/id?1023245 http://secunia.com/advisories/37446 http://secunia.com/advisories/38915 SuSE Security Announcement: SUSE-SR:2010:006 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-03/msg00004.html http://www.vupen.com/english/advisories/2009/3352
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.