Sha256: dcf0b35247f8ebd927360df50bafd3599a7f1789c545d143b17971781b8ab8d2
Contents?: true
Size: 595 Bytes
Versions: 1
Compression:
Stored size: 595 Bytes
Contents
--- gem: actionmailer cve: 2013-4389 osvdb: 98629 url: https://nvd.nist.gov/vuln/detail/CVE-2013-4389 title: Action Mailer Gem for Ruby contains a possible DoS Vulnerability date: 2013-10-16 description: Action Mailer Gem for Ruby contains a format string flaw in the Log Subscriber component. The issue is triggered as format string specifiers (e.g. %s and %x) are not properly sanitized in user-supplied input when handling email addresses. This may allow a remote attacker to cause a denial of service cvss_v2: 4.3 unaffected_versions: - ~> 2.3.2 patched_versions: - '>= 3.2.15'
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/actionmailer/CVE-2013-4389.yml |