MGASA-2016-0342
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 13 Oct 2016, 07:20
Last modified:16 Apr 2026, 06:23
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
13 Oct 2016, 07:20
Published
Vulnerability first disclosed
16 Apr 2026, 06:23
Last Modified
Vulnerability information updated
Description
Updated ruby packages fix a security vulnerability A bug in openssl module caused using an all 0 IV for AES-GCM ciphers in some cases (when setting a key, an iv, and then setting a key a again (CVE-2016-779
Affected Systems
- mageia•ruby
< 2.0.0.p648-1.1.mga5