Overview

File _patchinfo of Package patchinfo.24605

<patchinfo incident="24605">
  <issue tracker="cve" id="2022-23633"/>
  <issue tracker="cve" id="2021-22904"/>
  <issue tracker="bnc" id="1185780">VUL-0: CVE-2021-22904: rubygem-actionpack-3_2,rubygem-actionpack-4_2,rubygem-actionpack-5_1: Possible DoS Vulnerability in Action Controller Token Authentication</issue>
  <issue tracker="bnc" id="1196182">VUL-0: CVE-2022-23633: rubygem-actionpack-5_1,rubygem-actionpack-4_2,rubygem-rails-4_2,rubygem-rails-5_1: Possible exposure of information vulnerability in Action Pack</issue>
  <packager>mschnitzer</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for rubygem-actionpack-5_1, rubygem-activesupport-5_1</summary>
  <description>This update for rubygem-actionpack-5_1 and rubygem-activesupport-5_1 fixes the following issues:

- CVE-2021-22904: Fixed possible DoS Vulnerability in Action Controller Token Authentication (bsc#1185780)
- CVE-2022-23633: Fixed possible exposure of information vulnerability in Action Pack (bsc#1196182)
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places