actionmailer 1.2.4

1 security vulnerability found in version 1.2.4

CVE-2013-4389 rubygem-actionmailer: email address processing DoS

medium severity CVE-2013-4389
medium severity CVE-2013-4389
Patched versions: >= 3.2.15
Unaffected versions: ~> 2.3.2

Multiple format string vulnerabilities in log_subscriber.rb files in the log subscriber component in Action Mailer in Ruby on Rails 3.x before 3.2.15 allow remote attackers to cause a denial of service via a crafted e-mail address that is improperly handled during construction of a log message.

No officially reported memory leakage issues detected.


This gem version does not have any officially reported memory leaked issues.

Gem version without a license.


Unless a license that specifies otherwise is included, nobody can use, copy, distribute, or modify this library without being at risk of take-downs, shake-downs, or litigation.

This gem version is available.


This gem version has not been yanked and is still available for usage.