{"affected":[{"ecosystem_specific":{"binaries":[{"ruby-devel":"1.8.7.p357-0.9.19.1","ruby-doc-html":"1.8.7.p357-0.9.19.1","ruby-doc-ri":"1.8.7.p357-0.9.19.1","ruby-examples":"1.8.7.p357-0.9.19.1","ruby-test-suite":"1.8.7.p357-0.9.19.1","ruby-tk":"1.8.7.p357-0.9.19.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Software Development Kit 11 SP4","name":"ruby","purl":"pkg:rpm/suse/ruby&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.8.7.p357-0.9.19.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"ruby-devel":"1.8.7.p357-0.9.19.1"}]},"package":{"ecosystem":"SUSE:Lifecycle Management Server 1.3","name":"ruby","purl":"pkg:rpm/suse/ruby&distro=SUSE%20Lifecycle%20Management%20Server%201.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.8.7.p357-0.9.19.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"ruby":"1.8.7.p357-0.9.19.1","ruby-doc-html":"1.8.7.p357-0.9.19.1","ruby-tk":"1.8.7.p357-0.9.19.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server 11 SP4","name":"ruby","purl":"pkg:rpm/suse/ruby&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.8.7.p357-0.9.19.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"ruby":"1.8.7.p357-0.9.19.1","ruby-doc-html":"1.8.7.p357-0.9.19.1","ruby-tk":"1.8.7.p357-0.9.19.1"}]},"package":{"ecosystem":"SUSE:Linux Enterprise Server for SAP Applications 11 SP4","name":"ruby","purl":"pkg:rpm/suse/ruby&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2011%20SP4"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.8.7.p357-0.9.19.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"ruby-devel":"1.8.7.p357-0.9.19.1"}]},"package":{"ecosystem":"SUSE:Studio Onsite 1.3","name":"ruby","purl":"pkg:rpm/suse/ruby&distro=SUSE%20Studio%20Onsite%201.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.8.7.p357-0.9.19.1"}],"type":"ECOSYSTEM"}]},{"ecosystem_specific":{"binaries":[{"ruby-devel":"1.8.7.p357-0.9.19.1"}]},"package":{"ecosystem":"SUSE:WebYast 1.3","name":"ruby","purl":"pkg:rpm/suse/ruby&distro=SUSE%20WebYast%201.3"},"ranges":[{"events":[{"introduced":"0"},{"fixed":"1.8.7.p357-0.9.19.1"}],"type":"ECOSYSTEM"}]}],"aliases":[],"details":"\nThis update for ruby fixes the following issues:\n\nSecuirty issues fixed:\n- CVE-2015-1855: Ruby OpenSSL Hostname Verification (bsc#926974)\n- CVE-2015-7551: Unsafe tainted string usage in Fiddle and DL (bsc#959495)\n\nBugfixes:\n- fix small mistake in the backport for (bsc#986630)\n","id":"SUSE-SU-2017:0948-1","modified":"2017-04-06T09:39:44Z","published":"2017-04-06T09:39:44Z","references":[{"type":"ADVISORY","url":"https://www.suse.com/support/update/announcement/2017/suse-su-20170948-1/"},{"type":"REPORT","url":"https://bugzilla.suse.com/926974"},{"type":"REPORT","url":"https://bugzilla.suse.com/959495"},{"type":"REPORT","url":"https://bugzilla.suse.com/986630"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-1855"},{"type":"WEB","url":"https://www.suse.com/security/cve/CVE-2015-7551"}],"related":["CVE-2015-1855","CVE-2015-7551"],"summary":"Security update for ruby","upstream":["CVE-2015-1855","CVE-2015-7551"]}