Sha256: 9a6ecafb02dd72630ec0bfebfb1852e8833992885d31761a982cd520bbb41f97

Contents?: true

Size: 467 Bytes

Versions: 6

Compression:

Stored size: 467 Bytes

Contents

---
gem: bundler
osvdb: 115917
url: http://www.osvdb.org/show/osvdb/115917
title: Bundler Gem for Ruby install Command Process Listing Local Plaintext Credential Disclosure
date: 2011-09-20
description: |
  Bundler Gem for Ruby contains a flaw that is due to the program listing
  credential information in plaintext in the install command process listing.
  This may allow a local attacker to gain access to credential information.
patched_versions:
  - ">= 1.1.rc"

Version data entries

6 entries across 6 versions & 2 rubygems

Version Path
bundler-audit-0.7.0.1 data/ruby-advisory-db/gems/bundler/OSVDB-115917.yml
bundler-budit-0.6.2 data/ruby-advisory-db/gems/bundler/OSVDB-115917.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/bundler/OSVDB-115917.yml
bundler-audit-0.6.1 data/ruby-advisory-db/gems/bundler/OSVDB-115917.yml
bundler-audit-0.6.0 data/ruby-advisory-db/gems/bundler/OSVDB-115917.yml
bundler-audit-0.5.0 data/ruby-advisory-db/gems/bundler/OSVDB-115917.yml