Sha256: de4fd7f61557dde497a2f2cde8a1b3f21b7e5d1610a67574153f6c8babb33765
Contents?: true
Size: 1011 Bytes
Versions: 2
Compression:
Stored size: 1011 Bytes
Contents
require 'spec_helper'
describe "The CVE-2013-6416 vulnerability" do
before(:all) do
@check = Codesake::Dawn::Kb::CVE_2013_6416.new
# @check.debug = true
end
it "is detected if vulnerable version of rails rubygem is detected" do
@check.options[:dependencies]=[{:name=>"rails", :version=>'4.0.1'}]
@check.vuln?.should be_true
end
it "is ignored if rails version is 3.2.x" do
@check.options[:dependencies]=[{:name=>"rails", :version=>'3.2.16'}]
@check.vuln?.should be_false
end
it "is ignored if rails version is 3.1.x" do
@check.options[:dependencies]=[{:name=>"rails", :version=>'3.1.16'}]
@check.vuln?.should be_false
end
it "is ignored if rails version is 3.0.x" do
@check.options[:dependencies]=[{:name=>"rails", :version=>'3.0.16'}]
@check.vuln?.should be_false
end
it "is ignored if rails version is 2.3.x" do
@check.options[:dependencies]=[{:name=>"rails", :version=>'2.3.16'}]
@check.vuln?.should be_false
end
end
Version data entries
2 entries across 2 versions & 1 rubygems
| Version | Path |
|---|---|
| codesake-dawn-0.85 | spec/lib/kb/codesake_cve_2013_6416.rb |
| codesake-dawn-0.80.0 | spec/lib/kb/codesake_cve_2013_6416.rb |