RubyGems - bundler-audit - Versions diffs - 0.4.0 → 0.5.0 - Mend

bundler-audit 0.4.0 → 0.5.0

Files changed (313) hide show

data/data/ruby-advisory-db/gems/fileutils/OSVDB-90715.yml CHANGED

@@ -1,10 +1,7 @@
 ---
 gem: fileutils
-cve:
 osvdb: 90715
 url: http://osvdb.org/show/osvdb/90715
 title: fileutils Gem for Ruby files_utils.rb /tmp File Symlink Arbitrary File Overwrite
 date: 2013-02-28
 description: fileutils Gem for Ruby contains a flaw as the program creates temporary files insecurely. It is possible for a local attacker to use a symlink attack against temporary files created by files_utils.rb to cause the program to unexpectedly overwrite an arbitrary file.
-cvss_v2:
-patched_versions:

data/data/ruby-advisory-db/gems/fileutils/OSVDB-90716.yml CHANGED

@@ -1,10 +1,7 @@
 ---
 gem: fileutils
-cve:
 osvdb: 90716
 url: http://osvdb.org/show/osvdb/90716
 title: fileutils Gem for Ruby Temporary Directory Hijacking Weakness
 date: 2013-02-28
 description: fileutils Gem for Ruby contains a flaw that is due to the program not verifying the existence of a directory before attempting to create it. This may allow a local attacker to create the directory in advance, thus owning any files subsequently written to it.
-cvss_v2:
-patched_versions:

data/data/ruby-advisory-db/gems/fileutils/OSVDB-90717.yml CHANGED

@@ -6,5 +6,3 @@ url: http://osvdb.org/show/osvdb/90717
 title: fileutils Gem for Ruby file_utils.rb Crafted URL Handling Remote Command Execution
 date: 2013-02-28
 description: fileutils Gem for Ruby contains a flaw in file_utils.rb. The issue is triggered when handling a specially crafted URL containing a command after a delimiter (;). This may allow a remote attacker to potentially execute arbitrary commands.
-cvss_v2:
-patched_versions:

data/data/ruby-advisory-db/gems/fileutils/OSVDB-90718.yml ADDED

@@ -0,0 +1,7 @@
+---
+gem: fileutils
+osvdb: 90718
+url: http://osvdb.org/show/osvdb/90718
+title: fileutils Gem for Ruby /lib/file_utils/open_office.rb Character Handling Remote Command Execution
+date: 2013-02-28
+description: fileutils Gem for Ruby contains a flaw in /lib/file_utils/open_office.rb. The issue is triggered when handling a specially crafted URL containing a command after a delimiter (;). This may allow a remote attacker to potentially execute arbitrary commands.

data/data/ruby-advisory-db/gems/flash_tool/OSVDB-90829.yml CHANGED

@@ -6,4 +6,3 @@ url: http://osvdb.org/show/osvdb/90829
 title: flash_tool Gem for Ruby File Download Handling Arbitrary Command Execution
 date: 2013-03-04
 description: flash_tool Gem for Ruby contains a flaw that is triggered during the handling of downloaded files that contain shell characters. With a specially crafted file, a context-dependent attacker can execute arbitrary commands.
-cvss_v2:

data/data/ruby-advisory-db/gems/flavour_saver/OSVDB-110796.yml ADDED

@@ -0,0 +1,14 @@
+---
+gem: flavour_saver
+osvdb: 110796
+url: http://osvdb.org/show/osvdb/110796
+title: |
+  FlavourSaver handlebars helper remote code execution.
+date: 2014-09-04
+description: |
+  FlavourSaver contains a flaw in helper method dispatch where it uses
+  Kernel::send to call helpers without checking that they are defined
+  within the template context first.  This allows expressions such as
+  {{system "ls"}} or {{eval "puts 1 + 1"}} to be executed.
+patched_versions:
+  - ">= 0.3.3"

data/data/ruby-advisory-db/gems/flukso4r/OSVDB-101577.yml ADDED

@@ -0,0 +1,7 @@
+---
+gem: flukso4r
+osvdb: 101577
+url: http://osvdb.org/show/osvdb/101577
+title: flukso4r Gem for Ruby /lib/flukso/R.rb Arbitrary Command Execution
+date: 2013-12-31
+description: flukso4r Gem for Ruby contains a flaw in /lib/flukso/R.rb that is due to the application failing to properly validate user-supplied input. This may allow a context-dependent attacker to execute arbitrary commands.

data/data/ruby-advisory-db/gems/fog-dragonfly/OSVDB-110439.yml ADDED

@@ -0,0 +1,15 @@
+---
+gem: fog-dragonfly
+osvdb: 110439
+url: http://osvdb.org/show/osvdb/110439
+title: Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution
+date: 2014-08-25
+description: |
+  Dragonfly Gem for Ruby contains a flaw in Uploading & Processing that is due
+  to the gem failing to restrict arbitrary commands to imagemagicks convert.
+  This may allow a remote attacker to gain read/write access to the filesystem
+  and execute arbitrary commands.
+  This gem has been renamed. Please use "dragonfly" from now on.
+patched_versions:
+  - ">= 0.8.4"

data/data/ruby-advisory-db/gems/fog-dragonfly/OSVDB-90647.yml ADDED

@@ -0,0 +1,16 @@
+---
+gem: fog-dragonfly
+cve: 2013-1756
+osvdb: 90647
+url: http://www.osvdb.org/show/osvdb/90647
+title: Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution
+date: 2013-02-19
+description: |
+  Dragonfly Gem for Ruby contains a flaw that is triggered during the parsing
+  of a specially crafted request. This may allow a remote attacker to execute
+  arbitrary code.
+  This gem has been renamed. Please use "dragonfly" from now on.
+cvss_v2: 7.5
+unaffected_versions:
+  - "< 0.7.0"

data/data/ruby-advisory-db/gems/fog-dragonfly/OSVDB-96798.yml CHANGED

@@ -2,12 +2,15 @@
 gem: fog-dragonfly
 cve: 2013-5671
 osvdb: 96798
-url: http://www.osvdb.org/show/osvdb/96798
+url: http://osvdb.org/show/osvdb/96798
 title: fog-dragonfly Gem for Ruby imagemagickutils.rb Remote Command Execution
 date: 2013-09-03
-description: fog-dragonfly Gem for Ruby contains a flaw that is due to the program
-  failing to properly sanitize input passed via the imagemagickutils.rb script. This
-  may allow a remote attacker to execute arbitrary commands.
-cvss_v2:
+description: |
+  fog-dragonfly Gem for Ruby contains a flaw that is due to the program
+  failing to properly sanitize input passed via the imagemagickutils.rb script.
+  This may allow a remote attacker to execute arbitrary commands.
+  This gem has been renamed. Please use "dragonfly" from now on.
+cvss_v2: 7.5
 patched_versions:
-- ">= 0.8.4"
+  - ">= 0.8.4"

data/data/ruby-advisory-db/gems/fog-dragonfly/OSVDB-97854.yml ADDED

@@ -0,0 +1,12 @@
+---
+gem: fog-dragonfly
+osvdb: 97854
+url: http://osvdb.org/show/osvdb/97854
+title: Dragonfly Gem for Ruby on Windows Shell Escaping Weakness
+date: 2011-09-01
+description: |
+  Dragonfly Gem for Ruby contains a flaw that is due to the program failing to
+  properly escape a shell that contains injected characters. This may allow a
+  context-dependent attacker to potentially execute arbitrary commands.
+  This gem has been renamed. Please use "dragonfly" from now on.

data/data/ruby-advisory-db/gems/gnms/OSVDB-108594.yml ADDED

@@ -0,0 +1,7 @@
+---
+gem: gnms
+osvdb: 108594
+url: http://osvdb.org/show/osvdb/108594
+title: gnms Gem for Ruby /lib/cmd_parse.rb ip Variable Shell Metacharacter Handling Remote Command Injection
+date: 2014-06-30
+description: gnms Gem for Ruby contains a flaw in /lib/cmd_parse.rb that is triggered when handling shell metacharacters passed via the 'ip' variable. This may allow a remote attacker to inject arbitrary commands.

data/data/ruby-advisory-db/gems/gollum-grit_adapter/CVE-2014-9489.yml ADDED

@@ -0,0 +1,23 @@
+---
+gem: gollum-grit_adapter
+cve: 2014-9489
+url: https://github.com/gollum/gollum/issues/913
+title: |
+  gollum-grit_adapter Search Functionality Allows Arbitrary Command
+  Execution
+date: 2014-12-04
+description: |
+  The gollum-grit_adapter gem contains a flaw that can allow arbitrary
+  command execution.
+  Grit implements its search functionality by shelling out to `git grep`. In
+  turn, `git grep` takes a `-O` or `--open-files-in-pages` option that will
+  pipe the results of `grep` to an arbitrary process. By failing to properly
+  sanitize user input search parameters, an attacker can thus perform command
+  execution.
+  Note that the grep result must find the string 'master' (or
+  whatever is the default branch that gollum uses) in any of the wiki's
+  documents for this to succeed.
+patched_versions:
+  - ">= 0.1.1"

data/data/ruby-advisory-db/gems/gollum/CVE-2015-7314.yml ADDED

@@ -0,0 +1,13 @@
+---
+gem: gollum
+cve: 2015-7314
+osvdb: 127779
+url: https://github.com/gollum/gollum/commit/ce68a88293ce3b18c261312392ad33a88bb69ea1
+title: gollum Upload File Functionality Permits Arbitrary File Access
+date: 2015-09-20
+description: |
+  The gollum gem contains a flaw in its upload file functionality that can
+  allow arbitrary file access. This occurs due to a lack of type checking
+  when handling temporary files during the upload process.
+patched_versions:
+  - ">= 4.0.1"

data/data/ruby-advisory-db/gems/gyazo/OSVDB-108563.yml ADDED

@@ -0,0 +1,10 @@
+---
+gem: gyazo
+cve: 2014-4994
+osvdb: 108563
+url: http://osvdb.org/show/osvdb/108563
+title: gyazo Gem for Ruby client.rb Metacharacter Handling Remote Command Execution
+date: 2014-06-30
+description: gyazo Gem for Ruby contains a flaw in client.rb that is triggered when handling metacharacters. This may allow a remote attacker to execute arbitrary commands.
+patched_versions:
+  - ">= 2.0.0"

data/data/ruby-advisory-db/gems/handlebars-source/OSVDB-131671.yml ADDED

@@ -0,0 +1,17 @@
+---
+gem: handlebars-source
+osvdb: 131671
+url: https://blog.srcclr.com/handlebars_vulnerability_research_findings/
+title: handlebars.js - quoteless attributes in templates can lead to XSS
+date: 2015-08-24
+description: |
+  The upstream 'handlebars' node.js module was found to not properly escape
+  equals (=) signs, leading to possible content injection via attributes
+  in templates.
+  Example:
+  * Template: <a href={{foo}}/>
+  * Input: { 'foo' : 'test.com onload=alert(1)'}
+  * Rendered result: <a href=test.com onload=alert(1)/>
+patched_versions:
+  - ">= 4.0.0"

data/data/ruby-advisory-db/gems/http/CVE-2015-1828.yml ADDED

@@ -0,0 +1,14 @@
+---
+gem: http
+cve: 2015-1828
+osvdb: 119927
+url: https://groups.google.com/forum/#!topic/httprb/jkb4oxwZjkU
+title: HTTPS MitM vulnerability in http.rb
+date: 2015-03-24
+description: |
+  http.rb failed to call the OpenSSL::SSL::SSLSocket#post_connection_check method to perform hostname verification.
+  Because of this, an attacker with a valid certificate but with a mismatched subject can perform a MitM attack.
+cvss_v2: 5.0
+patched_versions:
+  - ">= 0.7.3"
+  - "~> 0.6.4"

data/data/ruby-advisory-db/gems/jquery-rails/CVE-2015-1840.yml ADDED

@@ -0,0 +1,36 @@
+---
+gem: jquery-rails
+cve: 2015-1840
+url: https://groups.google.com/forum/#!topic/ruby-security-ann/XIZPbobuwaY
+title: CSRF Vulnerability in jquery-rails
+date: 2015-06-16
+description: |
+  In the scenario where an attacker might be able to control the href attribute
+  of an anchor tag or the action attribute of a form tag that will trigger a
+  POST action, the attacker can set the href or action to
+  " https://attacker.com" (note the leading space) that will be passed to
+  JQuery, who will see this as a same origin request, and send the user's CSRF
+  token to the attacker domain.
+  To work around this problem, change code that allows users to control the
+  href attribute of an anchor tag or the action attribute of a form tag to
+  filter the user parameters.
+  For example, code like this:
+    link_to params
+  to code like this:
+    link_to filtered_params
+    def filtered_params
+      \# Filter just the parameters that you trust
+    end
+  See also:
+  - http://blog.honeybadger.io/understanding-the-rails-jquery-csrf-vulnerability-cve-2015-1840/
+cvss_v2: 5.0
+patched_versions:
+  - ">= 4.0.4"
+  - "~> 3.1.3"

data/data/ruby-advisory-db/gems/jquery-ujs/CVE-2015-1840.yml ADDED

@@ -0,0 +1,35 @@
+---
+gem: jquery-ujs
+cve: 2015-1840
+url: https://groups.google.com/forum/#!topic/ruby-security-ann/XIZPbobuwaY
+title: CSRF Vulnerability in jquery-ujs
+date: 2015-06-16
+description: |
+  In the scenario where an attacker might be able to control the href attribute
+  of an anchor tag or the action attribute of a form tag that will trigger a
+  POST action, the attacker can set the href or action to
+  " https://attacker.com" (note the leading space) that will be passed to
+  JQuery, who will see this as a same origin request, and send the user's CSRF
+  token to the attacker domain.
+  To work around this problem, change code that allows users to control the
+  href attribute of an anchor tag or the action attribute of a form tag to
+  filter the user parameters.
+  For example, code like this:
+    link_to params
+  to code like this:
+    link_to filtered_params
+    def filtered_params
+      \# Filter just the parameters that you trust
+    end
+  See also:
+  - http://blog.honeybadger.io/understanding-the-rails-jquery-csrf-vulnerability-cve-2015-1840/
+cvss_v2: 5.0
+patched_versions:
+  - ">= 1.0.4"

data/data/ruby-advisory-db/gems/jruby-openssl/CVE-2009-4123.yml ADDED

@@ -0,0 +1,16 @@
+---
+gem: jruby-openssl
+platform: jruby
+cve: 2009-4123
+url: http://jruby.org/2009/12/07/vulnerability-in-jruby-openssl
+title: jruby-openssl Gem for JRuby fails to do proper certificate validation
+date: 2009-12-07
+description: |
+  A security problem involving peer certificate verification was found where
+  failed verification silently did nothing, making affected applications
+  vulnerable to attackers. Attackers could lead a client application to believe
+  that a secure connection to a rogue SSL server is legitimate. Attackers could
+  also penetrate client-validated SSL server applications with a dummy
+  certificate.
+patched_versions:
+  - ">= 0.6"

data/data/ruby-advisory-db/gems/jruby-sandbox/OSVDB-106279.yml ADDED

@@ -0,0 +1,12 @@
+---
+gem: jruby-sandbox
+platform: jruby
+osvdb: 106279
+url: http://www.phenoelit.org/stuff/jruby-sandbox.txt
+title: jruby-sandbox Java Class Importation Sandbox Bypass
+date: 2014-04-24
+description: |
+  jruby-sandbox contains a flaw that is triggered when importing Java Classes.
+  This may allow a remote attacker to bypass the sandbox for code execution.
+patched_versions:
+  - ">= 0.2.3"

data/data/ruby-advisory-db/gems/json/OSVDB-101137.yml ADDED

@@ -0,0 +1,17 @@
+---
+gem: json
+cve: 2013-0269
+osvdb: 101137
+url: http://osvdb.org/show/osvdb/101137
+title: json Gem for Ruby JSON::GenericObject Function Arbitrary Addition Creation
+date: 2013-02-04
+description: |
+  json Gem for Ruby contains a flaw in the JSON::GenericObject function. The
+  issue is due to the program failing to restrict users from creating additions
+  regardless of the state of create_additions. This may allow a remote attacker
+  to create arbitrary additions.
+cvss_v2: 9.0
+patched_versions:
+  - ">= 1.7.7"
+unaffected_versions:
+  - "< 1.7.0"

data/data/ruby-advisory-db/gems/json/OSVDB-101157.yml ADDED

@@ -0,0 +1,14 @@
+---
+gem: json
+osvdb: 101157
+url: http://osvdb.org/show/osvdb/101157
+title: json Gem for Ruby Data Handling Stack Buffer Overflow
+date: 2007-05-21
+description: |
+  json Gem for Ruby contains an overflow condition that is triggered as
+  user-supplied input is not properly validated when handling specially crafted
+  data. This may allow a remote attacker to cause a stack-based buffer
+  overflow, resulting in a denial of service or potentially allowing the
+  execution of arbitrary code.
+patched_versions:
+  - ">= 1.1.0"

data/data/ruby-advisory-db/gems/json/OSVDB-90074.yml CHANGED

@@ -2,7 +2,7 @@
 gem: json
 cve: 2013-0269
 osvdb: 90074
-url: http://direct.osvdb.org/show/osvdb/90074
+url: http://osvdb.org/show/osvdb/90074
 title: Ruby on Rails JSON Gem Arbitrary Symbol Creation Remote DoS
 date: 2013-02-11

data/data/ruby-advisory-db/gems/kafo/OSVDB-106826.yml ADDED

@@ -0,0 +1,15 @@
+---
+gem: kafo
+cve: 2014-0135
+osvdb: 106826
+url: http://osvdb.org/show/osvdb/106826
+title: Kafo default_values.yaml Insecure Permissions Local Information Disclosure
+date: 2014-03-13
+description: Kafo contains a flaw that is due to the program using insecure
+  world-readable permissions for the default_values.yaml file. This may allow a
+  local attacker to gain access to password and other unspecified sensitive
+  information located within the file.
+cvss_v2: 1.9
+patched_versions:
+  - "~> 0.3.17"
+  - ">= 0.5.2"

data/data/ruby-advisory-db/gems/kajam/OSVDB-108529.yml ADDED

@@ -0,0 +1,12 @@
+---
+gem: kajam
+cve: 2014-4999
+osvdb: 108529
+url: http://osvdb.org/show/osvdb/108529
+title: kajam Gem for Ruby /dataset/lib/dataset/database/postgresql.rb Process List Local Plaintext Password Disclosure
+date: 2014-06-30
+description: |
+  kajam Gem for Ruby contains a flaw in
+  /dataset/lib/dataset/database/postgresql.rb that is triggered as the program
+  exposes the MySQL or PostgreSQL password in the process list. This may allow
+  a local attacker to gain access to password information.

data/data/ruby-advisory-db/gems/kajam/OSVDB-108530.yml ADDED

@@ -0,0 +1,11 @@
+---
+gem: kajam
+osvdb: 108530
+url: http://osvdb.org/show/osvdb/108530
+title: kajam Gem for Ruby /dataset/lib/dataset/database/postgresql.rb Metacharacter Handling Remote Command Execution
+date: 2014-06-30
+description: |
+  kajam Gem for Ruby contains a flaw in
+  /dataset/lib/dataset/database/postgresql.rb that is triggered when handling
+  metacharacters. This may allow a remote attacker to execute arbitrary
+  commands.

data/data/ruby-advisory-db/gems/karo/OSVDB-108573.yml ADDED

@@ -0,0 +1,10 @@
+---
+gem: karo
+osvdb: 108573
+url: http://osvdb.org/show/osvdb/108573
+title: karo Gem for Ruby db.rb Metacharacter Handling Remote Command Execution
+date: 2014-06-30
+description: |
+  karo Gem for Ruby contains a flaw in db.rb that is triggered when handling
+  metacharacters. This may allow a remote attacker to execute arbitrary
+  commands.

data/data/ruby-advisory-db/gems/karteek-docsplit/OSVDB-92117.yml CHANGED

@@ -7,4 +7,3 @@ title: Karteek Docsplit Gem for Ruby text_extractor.rb File Name Shell Metachara
 date: 2013-04-08
 description: Karteek Docsplit Gem for Ruby contains a flaw that is due to the program failing to properly sanitize input passed to text_extractor.rb. With a specially crafted file name that contains shell metacharacters, a context-dependent attacker can execute arbitrary commands
 cvss_v2: 9.3
-patched_versions: