aports issueshttps://gitlab.alpinelinux.org/alpine/aports/-/issues2019-07-23T14:26:29Zhttps://gitlab.alpinelinux.org/alpine/aports/-/issues/1702[v2.3] Vulnerability in nagios < 3.4.4 allows remote code execution2019-07-23T14:26:29ZLeonardo Arena[v2.3] Vulnerability in nagios < 3.4.4 allows remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6096
Solution:
\- Upgrade to 3.4.4 (edge, v2.5)
- Patches: (v2.4 and below)
http://nagios.svn.sourceforge.net/viewvc/nagios/nagioscore/trunk/cgi/getcgi.c?view=patch&r1=2547&r2=...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6096
Solution:
\- Upgrade to 3.4.4 (edge, v2.5)
- Patches: (v2.4 and below)
http://nagios.svn.sourceforge.net/viewvc/nagios/nagioscore/trunk/cgi/getcgi.c?view=patch&r1=2547&r2=2546&pathrev=2547
http://nagios.svn.sourceforge.net/viewvc/nagios/nagioscore/trunk/cgi/history.c?view=patch&r1=2547&r2=2546&pathrev=2547
*(from redmine: issue id 1702, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision ecfbcf0908bc3e70a9d2732ff78ac79feed038a3 by Natanael Copa on 2013-04-12T10:21:17Z:
```
main/nagios: security fix (CVE-2012-6096)
fixes #1702
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1697[v2.3] Vulnerability in mysql < 5.5.28 allows authentication bypass2019-07-23T14:26:34ZLeonardo Arena[v2.3] Vulnerability in mysql < 5.5.28 allows authentication bypasshttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5611
Solution:
- Upgrade to 5.5.30
*(from redmine: issue id 1697, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision c9584ba0d907f9ada2f7ed5473be3c5db75c9...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5611
Solution:
- Upgrade to 5.5.30
*(from redmine: issue id 1697, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision c9584ba0d907f9ada2f7ed5473be3c5db75c9a09 by Natanael Copa on 2013-03-25T20:23:20Z:
```
main/mysql: security upgrade to 5.5.30 (CVE-2012-5611)
fixes #1697
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1693[v2.3] Vulnerability in libssh < 0.5.4 allows remote denial of service2019-07-23T14:26:37ZLeonardo Arena[v2.3] Vulnerability in libssh < 0.5.4 allows remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0176
Solution:
- Upgrade to 0.5.4
*(from redmine: issue id 1693, created on 2013-03-19, closed on 2013-04-11)*
* Changesets:
* Revision 8ef246aff2cda16d420dad63c46d4b32a139dd...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0176
Solution:
- Upgrade to 0.5.4
*(from redmine: issue id 1693, created on 2013-03-19, closed on 2013-04-11)*
* Changesets:
* Revision 8ef246aff2cda16d420dad63c46d4b32a139dda4 by Natanael Copa on 2013-03-27T15:24:14Z:
```
main/libssh: security upgrade to 0.5.4 (CVE-2013-0176)
fixes #1693
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1688[v2.3] Vulnerability in ruby ActiveRecord < 3.2.12,2.3.17 allows authenticati...2019-07-23T14:26:41ZLeonardo Arena[v2.3] Vulnerability in ruby ActiveRecord < 3.2.12,2.3.17 allows authentication bypasshttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0276
Solution:
\- Upgrade to 3.2.12 (edge, v2.5)
- Upgrade to 2.3.17 (v2.4-v2.2)
*(from redmine: issue id 1688, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
*...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0276
Solution:
\- Upgrade to 3.2.12 (edge, v2.5)
- Upgrade to 2.3.17 (v2.4-v2.2)
*(from redmine: issue id 1688, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 80726aa0ce29dacb6bdc34e8e7922c2d3d300dee by Natanael Copa on 2013-04-12T08:34:05Z:
```
main/ruby-activerecord: security upgrade to 2.3.17 (CVE-2013-0276)
fixes #1688
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1683[v2.3] Vulnerability in Samba Web Administration Tool allows authentication b...2019-07-23T14:26:46ZLeonardo Arena[v2.3] Vulnerability in Samba Web Administration Tool allows authentication bypasshttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0213
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0214
Solution:
\- Upgrade to 3.6.12 (v2.5-v2.3)
- Upgrade to 3.5.21 (v2.2)
*(from redmine: issue id 1683, created ...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0213
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0214
Solution:
\- Upgrade to 3.6.12 (v2.5-v2.3)
- Upgrade to 3.5.21 (v2.2)
*(from redmine: issue id 1683, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision cf72dde25eb0f37eb7721665625baffb5c7f7f39 by Natanael Copa on 2013-04-12T08:24:16Z:
```
main/samba: security upgrade to 3.6.13 (CVE-2013-0213,CVE-2013-0214)
fixes #1683
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1679[v2.3] Vulnerabilty in postgresql < 9.2.3,9.1.8,9.0.12 allows remote denial o...2019-07-23T14:26:50ZLeonardo Arena[v2.3] Vulnerabilty in postgresql < 9.2.3,9.1.8,9.0.12 allows remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0255
Solution:
\- Upgrade to 9.0.12 (v2.2)
\- Upgrade to 9.1.8 (v2.3 and v2.4)
- Upgrade to 9.2.3 (v2.5)
*(from redmine: issue id 1679, created on 2013-03-19, closed on 2013-0...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0255
Solution:
\- Upgrade to 9.0.12 (v2.2)
\- Upgrade to 9.1.8 (v2.3 and v2.4)
- Upgrade to 9.2.3 (v2.5)
*(from redmine: issue id 1679, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision cf92a7ac79a90ece0ec990046d11ed22311651c2 by Natanael Copa on 2013-03-26T01:13:38Z:
```
main/postgresql: security upgrade to 9.1.8 (CVE-2013-0255)
fixes #1679
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1675[v2.3] Vulnerability in nrpe < 2.14 allows remote code execution2019-07-23T14:26:53ZLeonardo Arena[v2.3] Vulnerability in nrpe < 2.14 allows remote code executionhttp://www.occamsec.com/vulnerabilities.html\#nagios\_metacharacter\_vulnerability
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1362
Solution:
- Upgrade to 2.14
*(from redmine: issue id 1675, created on 2013-03-19, close...http://www.occamsec.com/vulnerabilities.html\#nagios\_metacharacter\_vulnerability
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1362
Solution:
- Upgrade to 2.14
*(from redmine: issue id 1675, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 074165486515f6ff65577079ab0d88783cbbefa7 by Natanael Copa on 2013-04-12T07:58:45Z:
```
main/nrpe: security upgrade to 2.14 (CVE-2013-1362)
fixes #1675
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1670[v2.3] Vulnerability in Apache < 2.4.4, 2.2.24 allows cross-site scripting2019-07-23T14:26:58ZLeonardo Arena[v2.3] Vulnerability in Apache < 2.4.4, 2.2.24 allows cross-site scriptinghttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3499
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4558
Solution:
\- Upgrade to 2.4.4 (v2.5)
- Upgrade to 2.2.24 (v2.4 and below)
*(from redmine: issue id 1670, crea...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3499
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4558
Solution:
\- Upgrade to 2.4.4 (v2.5)
- Upgrade to 2.2.24 (v2.4 and below)
*(from redmine: issue id 1670, created on 2013-03-19, closed on 2013-04-12)*
* Changesets:
* Revision 04bea357b4d5a7b811d8cbc3fe44a8affbd06e9a by Natanael Copa on 2013-04-11T16:52:39Z:
```
main/apache2: security upgrade to 2.2.24 (CVE-2012-3499,CVE-2012-4558)
fixes #1670
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1666[v2.3] Multiple vulnerabilities in php < 5.3.22 allows remote information dis...2019-07-23T14:27:02ZLeonardo Arena[v2.3] Multiple vulnerabilities in php < 5.3.22 allows remote information disclosurehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1635
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1643
Solution:
- Upgrade to 5.3.22
*(from redmine: issue id 1666, created on 2013-03-19, closed on 2013-04-12)*
* ...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1635
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1643
Solution:
- Upgrade to 5.3.22
*(from redmine: issue id 1666, created on 2013-03-19, closed on 2013-04-12)*
* Changesets:
* Revision f5b55e3ab4dd0db33562854107a7393e8e75db6d by Natanael Copa on 2013-04-11T16:31:58Z:
```
main/php: security upgrade to 5.3.23 (CVE-2013-1635,CVE-2013-1643)
fixes #1666
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1661[v2.3] Vulnerability in libxml2 allows remote denial of service2019-07-23T14:27:07ZLeonardo Arena[v2.3] Vulnerability in libxml2 allows remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0338
https://bugzilla.redhat.com/show\_bug.cgi?id=912400
Solution:
- Patch:
https://git.gnome.org/browse/libxml2/patch/?id=23f05e0c33987d6605387b300c4be5da2120a7ab
*(from redm...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0338
https://bugzilla.redhat.com/show\_bug.cgi?id=912400
Solution:
- Patch:
https://git.gnome.org/browse/libxml2/patch/?id=23f05e0c33987d6605387b300c4be5da2120a7ab
*(from redmine: issue id 1661, created on 2013-03-19, closed on 2013-04-11)*
* Relations:
* duplicates #1725
* Changesets:
* Revision 592e6b4954307395e9a29ca70a3ccec7f1f3221f on 2013-04-11T14:34:55Z:
```
main/libxml2: fix (CVE-2013-0338)
fixes #1661
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1656[v2.3] Vulnerability in various gnutls versions2019-07-23T14:27:11ZLeonardo Arena[v2.3] Vulnerability in various gnutls versionshttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1619
Solution:
\- Upgrade to 3.1.7 or later (v2.5)
\- Upgrade to 3.0.28 (v2.4)
- Upgrade to 2.12.23 (v2.3, v2.2)
*(from redmine: issue id 1656, created on 2013-03-19, closed o...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1619
Solution:
\- Upgrade to 3.1.7 or later (v2.5)
\- Upgrade to 3.0.28 (v2.4)
- Upgrade to 2.12.23 (v2.3, v2.2)
*(from redmine: issue id 1656, created on 2013-03-19, closed on 2013-04-11)*
* Changesets:
* Revision cc886f2ba7fe3142721ca39008a137f4d1d342ea on 2013-04-08T13:08:14Z:
```
main/gnutls: security upgrade to 2.12.23 (CVE-2013-1619). Fixes #1656
```
* Revision 0657af0fc3b75fb7a5ba99b45021991c7fcda84b on 2013-04-08T13:36:23Z:
```
Revert "main/gnutls: security upgrade to 2.12.23 (CVE-2013-1619). Fixes #1656"
This reverts commit cc886f2ba7fe3142721ca39008a137f4d1d342ea.
```
* Revision 80f504157551d1a473a083b20253452cbb71bb0c by Natanael Copa on 2013-04-11T15:06:23Z:
```
main/gnutls: security fix (CVE-2013-1619)
Patch from ubuntu:
https://launchpadlibrarian.net/132499570/gnutls26_2.12.14-5ubuntu3.1_2.12.14-5ubuntu3.2.diff.gz
fixes #1656
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1652[v2.3] Vulnerability in sudo < 1.8.6p7 allows privilege excalation2019-07-23T14:27:15ZLeonardo Arena[v2.3] Vulnerability in sudo < 1.8.6p7 allows privilege excalationhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1775
Solution:
- Upgrade to 1.8.6p7
*(from redmine: issue id 1652, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 9b4f0ccdcff9eba79c8538a9075d3876d912...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1775
Solution:
- Upgrade to 1.8.6p7
*(from redmine: issue id 1652, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 9b4f0ccdcff9eba79c8538a9075d3876d912a35d by Natanael Copa on 2013-03-26T01:03:33Z:
```
main/sudo: security upgrade to 1.8.6_p7 (CVE-2013-1775)
fixes #1652
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1648[v2.3] Vulnerability in privoxy < 3.0.1 allows information disclosure2019-07-23T14:27:19ZLeonardo Arena[v2.3] Vulnerability in privoxy < 3.0.1 allows information disclosurehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2503
Solution:
- Upgrade to 3.0.21
*(from redmine: issue id 1648, created on 2013-03-19, closed on 2013-04-11)*
* Changesets:
* Revision 7551906b7e0ca8a591575c3c67b4bcdbcae46...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2503
Solution:
- Upgrade to 3.0.21
*(from redmine: issue id 1648, created on 2013-03-19, closed on 2013-04-11)*
* Changesets:
* Revision 7551906b7e0ca8a591575c3c67b4bcdbcae46dba on 2013-04-08T11:34:34Z:
```
security upgrade to 3.0.21 (CVE-2013-2503). Fixes #1648
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1645[v2.3] Vulnerability in squid < 3.2.9 allow remote denial of service2019-07-23T14:27:21ZLeonardo Arena[v2.3] Vulnerability in squid < 3.2.9 allow remote denial of servicehttp://www.squid-cache.org/Advisories/SQUID-2013\_1.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1839
Solution:
- Upgrade to 3.2.9
*(from redmine: issue id 1645, created on 2013-03-19, closed on 2013-04-17)*
* Chang...http://www.squid-cache.org/Advisories/SQUID-2013\_1.txt
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1839
Solution:
- Upgrade to 3.2.9
*(from redmine: issue id 1645, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 8380617123add6f54ab6b69952b3bc92533ff5f1 by Natanael Copa on 2013-03-26T01:02:20Z:
```
main/squid: security upgrade to 3.2.9 (CVE-2013-1839)
fixes #1645
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1641[v2.3] Multiple vulnerabilities in wirshark < 1.6.14, 1.8.6 allows remote den...2019-07-23T14:27:25ZLeonardo Arena[v2.3] Multiple vulnerabilities in wirshark < 1.6.14, 1.8.6 allows remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2478
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2480
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2481
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2478
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2480
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2481
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2483
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2484
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2488
Solution:
- Upgrade to 1.6.14/1.8.6
*(from redmine: issue id 1641, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 3332eba0f0f106097722b1401907a239001bb4bd by Natanael Copa on 2013-03-26T00:50:53Z:
```
main/wireshark: security upgrade to 1.6.14 (CVE-2013-2478,CVE-2013-2480,CVE-2013-2481,CVE-2013-2483,CVE-2013-2484,CVE-2013-2488)
fixes #1641
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1637[v2.3] Vulnerability in perl < 5.12.5, 5.14.3 allows remote code execution2019-07-23T14:27:28ZLeonardo Arena[v2.3] Vulnerability in perl < 5.12.5, 5.14.3 allows remote code executionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5195
Solution:
- Upgrade to 5.12.5 (v2.2) or 5.14.3 (v2.3, v2.4)
*(from redmine: issue id 1637, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 29aaa3b...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5195
Solution:
- Upgrade to 5.12.5 (v2.2) or 5.14.3 (v2.3, v2.4)
*(from redmine: issue id 1637, created on 2013-03-19, closed on 2013-04-17)*
* Changesets:
* Revision 29aaa3b1df0480eca7eb2edd7e8394c765b061f0 by Natanael Copa on 2013-03-26T00:38:13Z:
```
main/perl: security upgrade to 5.14.3 (CVE-2012-5195)
fixes #1637
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1614[v2.3] pidgin: upgrade to 2.10.72019-07-23T14:27:46ZNatanael Copa[v2.3] pidgin: upgrade to 2.10.7*(from redmine: issue id 1614, created on 2013-02-14, closed on 2013-02-15)*
* Relations:
* parent #1610
* Changesets:
* Revision 75698847c89da429e623aa8da25455ea1c351fcd by Natanael Copa on 2013-02-14T17:07:55Z:
```
main/pidgin: s...*(from redmine: issue id 1614, created on 2013-02-14, closed on 2013-02-15)*
* Relations:
* parent #1610
* Changesets:
* Revision 75698847c89da429e623aa8da25455ea1c351fcd by Natanael Copa on 2013-02-14T17:07:55Z:
```
main/pidgin: security upgrade to 2.10.7 (CVE-2013-0271,CVE-2013-0272,CVE-2013-0273,CVE-2013-0274)
fixes #1614
```Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1594[v2.3] openssl: CVE-2013-0169, CVE-2012-2686, CVE-2013-01662019-07-23T14:28:06ZNatanael Copa[v2.3] openssl: CVE-2013-0169, CVE-2012-2686, CVE-2013-0166Upgrade to openssl-1.0.1d.
*(from redmine: issue id 1594, created on 2013-02-06, closed on 2013-02-06)*
* Changesets:
* Revision f8559a6507d371d02c48f885aa56fcd97f6e0d51 by Natanael Copa on 2013-02-06T10:15:29Z:
```
main/openssl: s...Upgrade to openssl-1.0.1d.
*(from redmine: issue id 1594, created on 2013-02-06, closed on 2013-02-06)*
* Changesets:
* Revision f8559a6507d371d02c48f885aa56fcd97f6e0d51 by Natanael Copa on 2013-02-06T10:15:29Z:
```
main/openssl: security upgrade to 1.0.0k (CVE-2013-0169,CVE-2012-2686,CVE-2013-0166)
fixes #1594
```Alpine 2.3.7Natanael CopaNatanael Copahttps://gitlab.alpinelinux.org/alpine/aports/-/issues/1575[v2.3] Vulnerability in rails < 2.3.15 allows remote denial of service2022-08-31T08:03:12ZLeonardo Arena[v2.3] Vulnerability in rails < 2.3.15 allows remote denial of servicehttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0156
Solution:
\- Upgrade to 2.3.15
*(from redmine: issue id 1575, created on 2013-01-17, closed on 2013-01-18)*http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0156
Solution:
\- Upgrade to 2.3.15
*(from redmine: issue id 1575, created on 2013-01-17, closed on 2013-01-18)*Alpine 2.3.7https://gitlab.alpinelinux.org/alpine/aports/-/issues/1572[v2.3] Vulnerability in rails < [3.0.18,3.1.9,3.2.10] allows SQL injection2019-07-23T14:28:17ZLeonardo Arena[v2.3] Vulnerability in rails < [3.0.18,3.1.9,3.2.10] allows SQL injectionhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6496
https://bugzilla.redhat.com/show\_bug.cgi?id=889649
Solution:
\- Patch: https://bugzilla.redhat.com/attachment.cgi?id=672189
*(from redmine: issue id 1572, created on 2013...http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6496
https://bugzilla.redhat.com/show\_bug.cgi?id=889649
Solution:
\- Patch: https://bugzilla.redhat.com/attachment.cgi?id=672189
*(from redmine: issue id 1572, created on 2013-01-17, closed on 2013-01-18)*
* Changesets:
* Revision 5c0165ecba49a95be1fe22d960bcea4557352cdb by Natanael Copa on 2013-01-18T09:44:31Z:
```
main/ruby-activerecord: security upgrade to 2.3.15 (CVE-2012-6496)
fixes #1572
```Alpine 2.3.7