Detections
Analytics
openSUSE Security Update : ruby (openSUSE-SU-2013:1393-1)
medium Nessus Plugin ID 75128
Language:
Synopsis
The remote openSUSE host is missing a security update.Description
The ruby gemrc configured the gem installation source as http source, allowing man in the middle attacks (if someone could provide a different address for rubygems.org).Solution
Update the affected ruby packages.See Also
https://lists.opensuse.org/opensuse-updates/2013-08/msg00057.html
Plugin Details
Severity: Medium
ID: 75128
File Name: openSUSE-2013-668.nasl
Version: 1.6
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 6/13/2014
Updated: 1/19/2021
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus
Vulnerability Information
CPE: p-cpe:/a:novell:opensuse:ruby, p-cpe:/a:novell:opensuse:ruby-common, p-cpe:/a:novell:opensuse:ruby-devel, cpe:/o:novell:opensuse:12.2, cpe:/o:novell:opensuse:12.3
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Patch Publication Date: 8/22/2013