Sha256: cb5a0a854bb5920a5c58a9639dd7026afd5096171082365b3292e4b8bc344dff
Contents?: true
Size: 520 Bytes
Versions: 1
Compression:
Stored size: 520 Bytes
Contents
--- gem: rubygems-update library: rubygems cve: 2019-8325 url: https://blog.rubygems.org/2019/03/05/security-advisories-2019-03.html title: Escape sequence injection vulnerability in errors date: 2019-03-05 description: | An issue was discovered in RubyGems 2.6 and later through 3.0.2. Since Gem::CommandManager#run calls alert_error without escaping, escape sequence injection is possible. (There are many ways to cause an error.) unaffected_versions: - "< 2.6" patched_versions: - ">= 3.0.3" - "~> 2.7.9"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/rubygems-update/CVE-2019-8325.yml |