Sha256: df5b285cb6a8a96f28c24faefb212279cb59fcfedcf42b05ec6563449fa35683

Contents?: true

Size: 446 Bytes

Versions: 3

Compression:

Stored size: 446 Bytes

Contents

---
gem: redis-store
cve: 2017-1000248
url: https://github.com/redis-store/redis-store/commit/ce13252c26fcc40ed4935c9abfeb0ee0761e5704
date: 2017-11-16
title: Unsafe objects can be loaded from Redis

description: |
  Redis-store <=v1.3.0 allows unsafe objects to be loaded from Redis via the
  use of the Marshal serializer.

patched_versions:
  - ">= 1.4.0"

related:
  url:
    - https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000248

Version data entries

3 entries across 3 versions & 2 rubygems

Version Path
bundler-audit-0.7.0.1 data/ruby-advisory-db/gems/redis-store/CVE-2017-1000248.yml
bundler-budit-0.6.2 data/ruby-advisory-db/gems/redis-store/CVE-2017-1000248.yml
bundler-budit-0.6.1 data/ruby-advisory-db/gems/redis-store/CVE-2017-1000248.yml