openSUSE Security Update : rubygem-bundler (openSUSE-2015-275)
Medium Nessus Plugin ID 82462
SynopsisThe remote openSUSE host is missing a security update.
Descriptionrubygem-bunder was updated to fix security vulnerabilities and non-security issues
The following security issues were fixed :
- Hide credentials while warning about gems with ambiguous sources
- Warn when more than one top-level source is present
- Bundler may install gems from a different source than expected (CVE-2013-0334) (bnc#898205)
In addition, rubygem-bundler was udpated to 1.8.4 to fix non-security issues.
SolutionUpdate the affected rubygem-bundler package.