Sha256: d5c856982fb7a55d67b40db54159184219a07d348c365e5964ba0952e9cb8b82

Contents?: true

Size: 495 Bytes

Versions: 6

Compression:

Stored size: 495 Bytes

Contents

---
engine: ruby
cve: 2012-4522
osvdb: 87917
url: http://www.osvdb.org/show/osvdb/87917
title: Ruby file.c rb_get_path_check Function NULL Byte File Path Request Arbitrary
  File Creation
date: 2012-10-12
description: |
  Ruby contains a flaw that is triggered by a NULL byte in the rb_get_path_check
  function in file.c when handling a file path request. This may allow a context-dependent
  attacker to create arbitrary files.
cvss_v2: 5.0
patched_versions:
  - "~> 1.9.3.286"
  - ">= 2.0.0"

Version data entries

6 entries across 6 versions & 2 rubygems

Version Path
bundler-audit-0.7.0.1 data/ruby-advisory-db/rubies/ruby/CVE-2012-4522.yml
bundler-budit-0.6.2 data/ruby-advisory-db/rubies/ruby/OSVDB-87917.yml
bundler-budit-0.6.1 data/ruby-advisory-db/rubies/ruby/OSVDB-87917.yml
bundler-audit-0.6.1 data/ruby-advisory-db/rubies/ruby/OSVDB-87917.yml
bundler-audit-0.6.0 data/ruby-advisory-db/rubies/ruby/OSVDB-87917.yml
bundler-audit-0.5.0 data/ruby-advisory-db/rubies/ruby/OSVDB-87917.yml