Sha256: de0bd43f1ca245b2012e3997cbd9a5673531616c5904c05b3ca4c38df9ce842b
Contents?: true
Size: 558 Bytes
Versions: 1
Compression:
Stored size: 558 Bytes
Contents
---
gem: airbrake-ruby
cve: 2019-16060
date: 2019-04-10
url: https://github.com/airbrake/airbrake-ruby/issues/468
title: Blacklist keys are no longer being filtered in airbrake-ruby
description: |
A flaw in airbrake-ruby v4.2.3 prevented user data from being filtered
prior to sending to Airbrake. Such data could be user passwords. Therefore, an app
could leak user passwords without knowing it.
unaffected_versions:
- "< 4.2.3"
- "> 4.2.3"
patched_versions:
- ">= 4.2.4"
related:
url:
- https://github.com/airbrake/airbrake-ruby/pull/469
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/airbrake-ruby/CVE-2019-16060.yml |