User: Password:
Subscribe / Log in / New account

ruby-actionpack: information leak

Package(s):ruby-actionpack-3.2 CVE #(s):CVE-2014-0130
Created:May 16, 2014 Updated:May 28, 2014

From the Debian advisory:

A directory traversal vulnerability in actionpack/lib/abstract_controller/base.rb allows remote attackers to read arbitrary files.

Mageia MGASA-2014-0303 ruby-actionpack 2014-07-26
openSUSE openSUSE-SU-2014:0720-1 rubygem-actionpack-3_2 2014-05-28
openSUSE openSUSE-SU-2014:0718-1 rubygem-actionpack-3_2 2014-05-28
Fedora FEDORA-2014-6127 rubygem-actionpack 2014-05-23
Fedora FEDORA-2014-6098 rubygem-actionpack 2014-05-23
CentOS CESA-2014:0510 ruby193-rubygem-actionpack 2014-05-21
Red Hat RHSA-2014:0510-01 ruby193-rubygem-actionpack 2014-05-15
Debian DSA-2929-1 ruby-actionpack-3.2 2014-05-16

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds