Sha256: 172a6e5d6cc020e290dc7037f179aa9899f4f5e87cf0dee83091efd95acff419
Contents?: true
Size: 1.55 KB
Versions: 8
Compression:
Stored size: 1.55 KB
Contents
require 'spec_helper'
describe "The CVE-2014-7818 vulnerability" do
before(:all) do
@check = Dawn::Kb::CVE_2014_7818.new
# @check.debug = true
end
it "is reported when vulnerable rails gem is used (3.2.18)" do
@check.dependencies = [{:name=>"rails", :version=>'3.2.18'}]
expect(@check.vuln?).to eq(true)
end
it "is reported when vulnerable rails gem is used (4.0.7)" do
@check.dependencies = [{:name=>"rails", :version=>'4.0.7'}]
expect(@check.vuln?).to eq(true)
end
it "is reported when vulnerable rails gem is used (4.1.6)" do
@check.dependencies = [{:name=>"rails", :version=>'4.1.6'}]
expect(@check.vuln?).to eq(true)
end
it "is reported when vulnerable rails gem is used (4.2.0.beta2)" do
@check.dependencies = [{:name=>"rails", :version=>'4.2.0.beta2'}]
expect(@check.vuln?).to eq(true)
end
# SAFE VERSIONS
it "is not reported when safe rails gem is used (3.2.20)" do
@check.dependencies = [{:name=>"rails", :version=>'3.2.20'}]
expect(@check.vuln?).to eq(false)
end
it "is not reported when safe rails gem is used (4.0.11)" do
@check.dependencies = [{:name=>"rails", :version=>'4.0.11'}]
expect(@check.vuln?).to eq(false)
end
it "is not reported when safe rails gem is used (4.1.7)" do
@check.dependencies = [{:name=>"rails", :version=>'4.1.7'}]
expect(@check.vuln?).to eq(false)
end
it "is not reported when safe rails gem is used (4.2.0.beta3)" do
@check.dependencies = [{:name=>"rails", :version=>'4.2.0.beta3'}]
expect(@check.vuln?).to eq(false)
end
end
Version data entries
8 entries across 8 versions & 1 rubygems