Security fix for CVE-2015-7581 CVE-2015-7576 CVE-2016-0751 CVE-2016-0752 CVE-2016-0753

How to install

sudo dnf upgrade --advisory=FEDORA-2016-94e71ee673
This update has been submitted for testing by pvalena. 3 years ago
This update has been pushed to testing. 3 years ago
This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes 3 years ago
This update has been submitted for stable by pvalena. 3 years ago
This update has been pushed to stable. 3 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago
BZ#1301933 CVE-2015-7576 rubygem-actionpack: Timing attack vulnerability in basic authentication in Action Controller
0
0
BZ#1301946 CVE-2016-0751 rubygem-actionpack: possible object leak and denial of service attack in Action Pack
0
0
BZ#1301948 CVE-2016-0751 rubygem-actionpack: Possible Object Leak and Denial of Service attack in Action Pack [fedora-all]
0
0
BZ#1301973 CVE-2016-0753 rubygem-activemodel, rubygem-activerecord: possible input validation circumvention in Active Model
0
0
BZ#1301977 CVE-2016-0753 rubygem-activemodel: Possible Input Validation Circumvention in Active Model [fedora-all]
0
0
BZ#1301981 CVE-2015-7581 rubygem-actionpack: Object leak vulnerability for wildcard controller routes in Action Pack
0
0
BZ#1301983 CVE-2015-7581 rubygem-actionpack: Object leak vulnerability for wildcard controller routes in Action Pack [fedora-all]
0
0
BZ#1301996 CVE-2015-7576 rubygem-actionpack: Timing attack vulnerability in basic authentication in Action Controller [fedora-all]
0
0
BZ#1301999 CVE-2015-7576 rubygem-activesupport: rubygem-actionpack: Timing attack vulnerability in basic authentication in Action Controller [fedora-all]
0
0

Automated Test Results