Sha256: 310bc90878f4bc822376447941e818c95e4bc5a1c3afb5ddd443723080444f30
Contents?: true
Size: 509 Bytes
Versions: 1
Compression:
Stored size: 509 Bytes
Contents
--- gem: chloride cve: 2018-6517 url: https://puppet.com/security/cve/CVE-2018-6517 date: 2019-03-08 title: Improper handling of ssh known_hosts file with Chloride description: | Prior to version 0.3.0, chloride's use of net-ssh resulted in host fingerprints for previously unknown hosts getting added to the user's known_hosts file without confirmation. In version 0.3.0 this is updated so that the user's known_hosts file is not updated by chloride. cvss_v3: 5.0 patched_versions: - ">= 0.3.0"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/chloride/CVE-2018-6517.yml |