Test ID:	1.3.6.1.4.1.25623.1.1.4.2013.1828.1
Category:	SuSE Local Security Checks
Title:	SUSE: Security Advisory (SUSE-SU-2013:1828-1)
Summary:	The remote host is missing an update for the 'ruby' package(s) announced via the SUSE-SU-2013:1828-1 advisory.
Description:	Summary: The remote host is missing an update for the 'ruby' package(s) announced via the SUSE-SU-2013:1828-1 advisory. Vulnerability Insight: The following security issue has been fixed: * CVE-2013-4164: heap overflow in float point parsing Security Issue references: * CVE-2013-4164 > * CVE-2009-0689 > Affected Software/OS: 'ruby' package(s) on SUSE Lifecycle Management Server 1.3, SUSE Linux Enterprise Desktop 11-SP2, SUSE Linux Enterprise Desktop 11-SP3, SUSE Linux Enterprise Server 11-SP2, SUSE Linux Enterprise Server 11-SP3, SUSE Linux Enterprise Software Development Kit 11-SP2, SUSE Linux Enterprise Software Development Kit 11-SP3, SUSE Studio Onsite 1.3. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0689 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html BugTraq ID: 35510 http://www.securityfocus.com/bid/35510 Bugtraq: 20091120 K-Meleon 1.5.3 Remote Array Overrun (Arbitrary code execution) (Google Search) http://www.securityfocus.com/archive/1/507977/100/0/threaded Bugtraq: 20091120 SeaMonkey 1.1.8 Remote Array Overrun (Arbitrary code execution) (Google Search) http://www.securityfocus.com/archive/1/507979/100/0/threaded Bugtraq: 20091210 Camino 1.6.10 Remote Array Overrun (Arbitrary code execution) (Google Search) http://www.securityfocus.com/archive/1/508423/100/0/threaded Bugtraq: 20091210 Flock 2.5.2 Remote Array Overrun (Arbitrary code execution) (Google Search) http://www.securityfocus.com/archive/1/508417/100/0/threaded http://www.mandriva.com/security/advisories?name=MDVSA-2009:294 http://www.mandriva.com/security/advisories?name=MDVSA-2009:330 http://secunia.com/secunia_research/2009-35/ https://lists.debian.org/debian-lts-announce/2018/11/msg00001.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6528 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9541 http://www.redhat.com/support/errata/RHSA-2009-1601.html http://www.redhat.com/support/errata/RHSA-2010-0153.html http://www.redhat.com/support/errata/RHSA-2010-0154.html RedHat Security Advisories: RHSA-2014:0311 http://rhn.redhat.com/errata/RHSA-2014-0311.html RedHat Security Advisories: RHSA-2014:0312 http://rhn.redhat.com/errata/RHSA-2014-0312.html http://securitytracker.com/id?1022478 http://secunia.com/advisories/37431 http://secunia.com/advisories/37682 http://secunia.com/advisories/37683 http://secunia.com/advisories/38066 http://secunia.com/advisories/38977 http://secunia.com/advisories/39001 http://securityreason.com/achievement_securityalert/63 http://securityreason.com/achievement_securityalert/69 http://securityreason.com/achievement_securityalert/72 http://securityreason.com/achievement_securityalert/73 http://securityreason.com/achievement_securityalert/71 http://securityreason.com/achievement_securityalert/76 http://securityreason.com/achievement_securityalert/75 http://securityreason.com/achievement_securityalert/77 http://securityreason.com/achievement_securityalert/78 http://securityreason.com/achievement_securityalert/81 http://sunsolve.sun.com/search/document.do?assetkey=1-26-272909-1 SuSE Security Announcement: SUSE-SR:2009:018 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html SuSE Security Announcement: SUSE-SR:2010:013 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html http://www.ubuntu.com/usn/USN-915-1 http://www.vupen.com/english/advisories/2009/3297 http://www.vupen.com/english/advisories/2009/3299 http://www.vupen.com/english/advisories/2009/3334 http://www.vupen.com/english/advisories/2010/0094 http://www.vupen.com/english/advisories/2010/0648 http://www.vupen.com/english/advisories/2010/0650 Common Vulnerability Exposure (CVE) ID: CVE-2013-4164 http://archives.neohapsis.com/archives/bugtraq/2014-04/0134.html http://archives.neohapsis.com/archives/bugtraq/2014-10/0103.html BugTraq ID: 63873 http://www.securityfocus.com/bid/63873 Debian Security Information: DSA-2809 (Google Search) http://www.debian.org/security/2013/dsa-2809 Debian Security Information: DSA-2810 (Google Search) http://www.debian.org/security/2013/dsa-2810 http://osvdb.org/100113 RedHat Security Advisories: RHSA-2013:1763 http://rhn.redhat.com/errata/RHSA-2013-1763.html RedHat Security Advisories: RHSA-2013:1764 http://rhn.redhat.com/errata/RHSA-2013-1764.html RedHat Security Advisories: RHSA-2013:1767 http://rhn.redhat.com/errata/RHSA-2013-1767.html RedHat Security Advisories: RHSA-2014:0011 http://rhn.redhat.com/errata/RHSA-2014-0011.html RedHat Security Advisories: RHSA-2014:0215 http://rhn.redhat.com/errata/RHSA-2014-0215.html http://secunia.com/advisories/55787 http://secunia.com/advisories/57376 SuSE Security Announcement: SUSE-SU-2013:1897 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-12/msg00009.html SuSE Security Announcement: openSUSE-SU-2013:1834 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00027.html SuSE Security Announcement: openSUSE-SU-2013:1835 (Google Search) http://lists.opensuse.org/opensuse-updates/2013-12/msg00028.html http://www.ubuntu.com/usn/USN-2035-1
Copyright	Copyright (C) 2021 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.