Sha256: ef88e03d75c32ce3498634b5fb9e3ecd43092037aaf1e6b7909c46b86e5dcef5
Contents?: true
Size: 535 Bytes
Versions: 1
Compression:
Stored size: 535 Bytes
Contents
--- gem: passenger cve: 2013-4136 osvdb: 94074 url: https://nvd.nist.gov/vuln/detail/CVE-2013-4136 title: Phusion Passenger Gem for Ruby Utils.cpp Temporary Directory Creation Symlink Local Privilege Escalation date: 2013-06-10 description: Phusion Passenger Gem for Ruby contains a flaw as the program creates temporary directories insecurely. It is possible for a local attacker to use a symlink attack against the Utils.cpp file to allow the attacker to gain elevated privileges. cvss_v2: 4.6 patched_versions: - ">= 4.0.8"
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| bundler-audit-0.7.0.1 | data/ruby-advisory-db/gems/passenger/CVE-2013-4136.yml |