Sha256: e0c730181930c2cdb3863aa83e1ccdf3a3dfc74b82de5c4b1b6d124660062fa1
Contents?: true
Size: 578 Bytes
Versions: 1
Compression:
Stored size: 578 Bytes
Contents
--- gem: consul cve: 2019-16377 url: https://github.com/makandra/consul/issues/49 title: | Consul gem insufficient authentication check: Multiple powers in one controller are not always checked correctly date: 2019-09-23 description: | With the consul ruby gem before 1.0.3, if a controller checks multiple powers using `:if` or `:except` conditions, these conditions are erroneously applied to all power checks in that controller. This can lead to skipped power checks and hence unauthenticated access to certain controller actions. patched_versions: - ">= 1.0.3"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/consul/CVE-2019-16377.yml |