Sha256: 708107390cedeeec97d5d36194bee983aba176fcb3b3e6ae536cca19f866c31d

Contents?: true

Size: 464 Bytes

Versions: 14

Compression:

Stored size: 464 Bytes

Contents

--- 
gem: rack-cache
cve: 2012-2671
osvdb: 83077
url: http://osvdb.org/83077
title: rack-cache Rubygem Sensitive HTTP Header Caching Weakness
date: 2012-06-06

description: |
  Rack::Cache (rack-cache) contains a flaw related to the rubygem caching
  sensitive HTTP headers. This will result in a weakness that may make it
  easier for an attacker to gain access to a user's session via a specially
  crafted header.

cvss_v2: 7.5

patched_versions: 
  - ">= 1.2"

Version data entries

14 entries across 14 versions & 3 rubygems

Version Path
bundler-budit-0.6.2 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
bundler-audit-0.4.0 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
bundler-audit-0.3.1 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
mrjoy-bundler-audit-0.3.3 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
mrjoy-bundler-audit-0.3.2 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
mrjoy-bundler-audit-0.3.1 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
bundler-audit-0.3.0 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
mrjoy-bundler-audit-0.2.1 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
bundler-audit-0.2.0 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml
mrjoy-bundler-audit-0.1.4 data/ruby-advisory-db/gems/rack-cache/OSVDB-83077.yml