oval:org.mitre.oval:def:23823

Definition Id: oval:org.mitre.oval:def:23823

Oval ID:	oval:org.mitre.oval:def:23823
Title:	ELSA-2013:0612: ruby security update (Moderate)
Description:	lib/rexml/text.rb in the REXML parser in Ruby before 1.9.3-p392 allows remote attackers to cause a denial of service (memory consumption and crash) via crafted text nodes in an XML document, aka an XML Entity Expansion (XEE) attack.
Family:	unix	Class:	patch
Reference(s):	ELSA-2013:0612-01 CVE-2012-4481 CVE-2013-1821	Version:	13
Platform(s):	Oracle Linux 6	Product(s):	ruby
Definition Synopsis:
Oracle Linux 6.x rpm test ruby is earlier than 0:1.8.7.352-10.el6_4 AND ruby-rdoc is earlier than 0:1.8.7.352-10.el6_4 AND ruby-devel is earlier than 0:1.8.7.352-10.el6_4 AND ruby-tcltk is earlier than 0:1.8.7.352-10.el6_4 AND ruby-docs is earlier than 0:1.8.7.352-10.el6_4 AND ruby-static is earlier than 0:1.8.7.352-10.el6_4 AND ruby-irb is earlier than 0:1.8.7.352-10.el6_4 AND ruby-libs is earlier than 0:1.8.7.352-10.el6_4 AND ruby-ri is earlier than 0:1.8.7.352-10.el6_4

Definition Id: oval:org.mitre.oval:def:16594

Oval ID:	oval:org.mitre.oval:def:16594
Title:	Oracle Linux 6.x
Description:	The operating system installed on the system is Oracle Linux 6.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:6	Version:	5
Platform(s):	Oracle Linux 6	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 6.x is installed
Referenced By:
oval:org.mitre.oval:def:23823