Sha256: 1cbce759bf4a667a6a1f8e28596cf7369f9a94eca71e3cee4e1ae9aadace220b

Contents?: true

Size: 570 Bytes

Versions: 3

Compression:

Stored size: 570 Bytes

Contents

---
gem: actionpack
framework: rails
cve: 2014-0082
osvdb: 103440
url: http://osvdb.org/show/osvdb/103440
title: Denial of Service Vulnerability in Action View when using render :text
date: 2014-02-18

description: |
  Ruby on Rails contains a flaw in actionpack/lib/action_view/template/text.rb
  in the text rendering component of Action View that is triggered when
  handling MIME types that are converted to symbols. This may allow a
  remote attacker to cause a denial of service.

cvss_v2: 5.0

unaffected_versions:
  - ~> 4.0.0

patched_versions:
  - ">= 3.2.17"

Version data entries

3 entries across 3 versions & 1 rubygems

Version Path
bundler-audit-0.6.1 data/ruby-advisory-db/gems/actionpack/OSVDB-103440.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/actionpack/OSVDB-103440.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/actionpack/OSVDB-103440.yml