RubygemsResearch

Sha256: 2f79107312edc9cef837dc2239fcc7a148ee6b05ed2ea8e01aa7fbf40e8be9c8

Contents?: true

Size: 574 Bytes

Versions: 1

Compression:

Stored size: 574 Bytes

---
gem: coming-soon
cve: 2019-15224
ghsa: 333g-rpr4-7hxq
url: https://github.com/rubygems.org/issues/2097
date: 2019-08-20
title: Code execution backdoor in coming-soon
description: |
  The coming-soon gem 0.2.8 for Ruby, as distributed on RubyGems.org, included a code-execution
  backdoor inserted by a third party.

  No unaffected version is known to exist, as the gem appears to have been entirely removed.
unaffected_versions:
  - "< 0.2.8"
  - "> 0.2.8"
related:
  url:
    - https://github.com/rubygems/rubygems.org/wiki/Gems-yanked-and-accounts-locked#19-aug-2019

Version data entries

1 entries across 1 versions & 1 rubygems

Version	Path
bundler-audit-0.7.0.1	data/ruby-advisory-db/gems/coming-soon/CVE-2019-15224.yml