Detections
Analytics
Fedora 39 : rubygem-actioncable / rubygem-actionmailbox / rubygem-actionmailer / etc (2023-4f0bb4ff5e)
high Nessus Plugin ID 185255
Language:
Synopsis
The remote Fedora host is missing one or more security updates.Description
The remote Fedora 39 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2023-4f0bb4ff5e advisory.- Ruby on Rails security upgrade: https://rubyonrails.org/2023/8/22/Rails-Versions-7-0-7-2-6-1-7-6-have- been-released - incorrect file permissions on encrypted files. Exploit not known.
(FEDORA-2023-4f0bb4ff5e)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Update the affected packages.See Also
https://bodhi.fedoraproject.org/updates/FEDORA-2023-4f0bb4ff5e
Plugin Details
Severity: High
ID: 185255
File Name: fedora_2023-4f0bb4ff5e.nasl
Version: 1.0
Type: local
Agent: unix
Family: Fedora Local Security Checks
Published: 11/7/2023
Updated: 11/7/2023
Supported Sensors: Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Vulnerability Information
CPE: cpe:/o:fedoraproject:fedora:39, p-cpe:/a:fedoraproject:fedora:rubygem-actioncable, p-cpe:/a:fedoraproject:fedora:rubygem-actionmailbox, p-cpe:/a:fedoraproject:fedora:rubygem-actionmailer, p-cpe:/a:fedoraproject:fedora:rubygem-actionpack, p-cpe:/a:fedoraproject:fedora:rubygem-actiontext, p-cpe:/a:fedoraproject:fedora:rubygem-actionview, p-cpe:/a:fedoraproject:fedora:rubygem-activejob, p-cpe:/a:fedoraproject:fedora:rubygem-activemodel, p-cpe:/a:fedoraproject:fedora:rubygem-activerecord, p-cpe:/a:fedoraproject:fedora:rubygem-activestorage, p-cpe:/a:fedoraproject:fedora:rubygem-activesupport, p-cpe:/a:fedoraproject:fedora:rubygem-rails, p-cpe:/a:fedoraproject:fedora:rubygem-railties
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list
Exploit Ease: No known exploits are available
Patch Publication Date: 8/31/2023
Vulnerability Publication Date: 8/31/2023
Reference Information
FEDORA: 2023-4f0bb4ff5e