Security update for rubygem-ruby-openid

SUSE Security Update: Security update for rubygem-ruby-openid
Announcement ID: SUSE-SU-2013:0616-1
Rating: moderate
References: #804717
Affected Products:
  • SUSE Studio Onsite 1.2
  • SUSE Studio Extension for System z 1.2
  • SUSE Cloud 1.0

  • An update that contains security fixes can now be installed.

    Description:


    An XML entity expansion problem in rubygem-ruby-openid has
    been fixed. (CVE-2013-1812)

    Patch Instructions:

    To install this SUSE Security Update use YaST online_update.
    Alternatively you can run the command listed for your product:

    • SUSE Studio Onsite 1.2:
      zypper in -t patch slestso12-rubygem-ruby-openid-7488
    • SUSE Studio Extension for System z 1.2:
      zypper in -t patch slestso12-rubygem-ruby-openid-7488
    • SUSE Cloud 1.0:
      zypper in -t patch sleclo10sp2-rubygem-ruby-openid-7487

    To bring your system up-to-date, use "zypper patch".

    Package List:

    • SUSE Studio Onsite 1.2 (x86_64):
    • rubygem-ruby-openid-2.1.8-0.5.1
    • SUSE Studio Extension for System z 1.2 (s390x):
    • rubygem-ruby-openid-2.1.8-0.5.1
    • SUSE Cloud 1.0 (x86_64):
    • rubygem-ruby-openid-2.1.5-0.4.1

    References:

    • https://bugzilla.novell.com/804717
    • http://download.suse.com/patch/finder/?keywords=096e9149ee1486f9ae0f40863e1a9404
    • http://download.suse.com/patch/finder/?keywords=1e86f4669cbfca4b53db7a0c1e3ea849