FEDORA-2017-ba12b45469

security update in Fedora 24 for ruby

Status: obsolete
  • Update to Ruby 2.3.4.
  • Fix SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP (CVE-2015-9096).

Comments 2

This update has been submitted for testing by vondruch.

vondruch edited this update.

Content Type
RPM
Status
obsolete
Test Gating
Request
testing
Submitted by
Update Type
security
Update Severity
unspecified
Karma
0
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted 2 years ago
modified 2 years ago

Related Bugs 2

00 #1461846 CVE-2015-9096 ruby: SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP
00 #1461848 CVE-2015-9096 ruby: SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP [fedora-all]

Automated Test Results