Sha256: 6041953e2f77dc9af2bbe19697738f435ad47295f83b8f3bec66790cf616159b

Contents?: true

Size: 561 Bytes

Versions: 5

Compression:

Stored size: 561 Bytes

Contents

---
gem: sentry-raven
cve: 2014-9490
osvdb: 115654
url: http://osvdb.org/show/osvdb/115654
title: sentry-raven Gem for Ruby contains a flaw that can result in a denial of service
date: 2014-12-08
description: Sentry raven-ruby contains a flaw in the lib/raven/okjson.rb script
  that is triggered when large numeric values are stored as an exponent or in
  scientific notation. With a specially crafted request, an attacker can cause
  the software to consume excessive resources resulting in a denial of service.
cvss_v2: 5.0
patched_versions:
  - ">= 0.12.2"

Version data entries

5 entries across 5 versions & 2 rubygems

Version Path
bundler-budit-0.6.2 data/ruby-advisory-db/gems/sentry-raven/OSVDB-115654.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/sentry-raven/OSVDB-115654.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/sentry-raven/OSVDB-115654.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/sentry-raven/OSVDB-115654.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/sentry-raven/OSVDB-115654.yml