RHSA-2016:0296High

Red Hat Security Advisory: rh-ror41 security update

Published
February 24, 2016
Last Modified
June 27, 2026

🔗 CVE IDs covered (6)

📋 Description

CVE-2015-7576 — rubygem-actionpack: Timing attack vulnerability in basic authentication in Action Controller CVE-2015-7577 — rubygem-activerecord: Nested attributes rejection proc bypass in Active Record CVE-2015-7581 — rubygem-actionpack: Object leak vulnerability for wildcard controller routes in Action Pack CVE-2016-0751 — rubygem-actionpack: possible object leak and denial of service attack in Action Pack CVE-2016-0752 — rubygem-actionpack: directory traversal flaw in Action View CVE-2016-0753 — rubygem-activerecord: possible input validation circumvention in Active Model

🔗 References (9)