Vulnerability   
Search   
    Search 191973 CVE descriptions
and 86218 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.878406
Category:Fedora Local Security Checks
Title:Fedora: Security Advisory for rubygem-activerecord (FEDORA-2020-4dd34860a3)
Summary:The remote host is missing an update for the 'rubygem-activerecord'; package(s) announced via the FEDORA-2020-4dd34860a3 advisory.
Description:Summary:
The remote host is missing an update for the 'rubygem-activerecord'
package(s) announced via the FEDORA-2020-4dd34860a3 advisory.

Vulnerability Insight:
Implements the ActiveRecord pattern (Fowler, PoEAA) for ORM. It ties database
tables and classes together for business objects, like Customer or
Subscription, that can find, save, and destroy themselves without resorting to
manual SQL.

Affected Software/OS:
'rubygem-activerecord' package(s) on Fedora 33.

Solution:
Please install the updated package(s).

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2020-5267
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XJ7NUWXAEVRQCROIIBV4C6WXO6IR3KSB/
https://github.com/rails/rails/commit/033a738817abd6e446e1b320cb7d1a5c15224e9a
https://lists.debian.org/debian-lts-announce/2020/03/msg00022.html
http://www.openwall.com/lists/oss-security/2020/03/19/1
SuSE Security Announcement: openSUSE-SU-2020:0627 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00019.html
Common Vulnerability Exposure (CVE) ID: CVE-2020-8185
https://groups.google.com/g/rubyonrails-security/c/pAe9EV8gbM0
https://hackerone.com/reports/899069
CopyrightCopyright (C) 2020 Greenbone Networks GmbH

This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2020 E-Soft Inc. All rights reserved.