Sha256: d5d6f78befe25ea288dee878c6d45bffaecab5f90dc41e15c61ab9d44e2b00f4

Contents?: true

Size: 439 Bytes

Versions: 3

Compression:

Stored size: 439 Bytes

Contents

---
gem: rubocop
cve: 2017-8418
url: https://github.com/bbatsov/rubocop/issues/4336
date: 2017-05-01
title: |
  RuboCop: insecure use of /tmp

description: |
  RuboCop 0.48.1 and earlier does not use /tmp in safe way, allowing local
  users to exploit this to tamper with cache files belonging to other users.

cvss_v2: 2.1

patched_versions:
  - ">= 0.49.0"

related:
  url:
    - http://www.openwall.com/lists/oss-security/2017/05/01/14

Version data entries

3 entries across 3 versions & 2 rubygems

Version Path
bundler-audit-0.7.0.1 data/ruby-advisory-db/gems/rubocop/CVE-2017-8418.yml
bundler-budit-0.6.2 data/ruby-advisory-db/gems/rubocop/CVE-2017-8418.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/rubocop/CVE-2017-8418.yml