RubyGems - bundler-audit - Versions diffs - 0.4.0 → 0.5.0 - Mend

bundler-audit 0.4.0 → 0.5.0

Files changed (313) hide show

data/data/ruby-advisory-db/gems/nokogiri/OSVDB-118481.yml ADDED

@@ -0,0 +1,15 @@
+---
+gem: nokogiri
+platform: jruby
+osvdb: 118481
+url: https://github.com/sparklemotion/nokogiri/pull/1087
+title: |
+  Nokogiri Gem for JRuby XML Document Root Element Handling Memory Consumption
+  Remote DoS
+date: 2014-04-30
+description: |
+  Nokogiri Gem for JRuby contains a flaw that is triggered when handling a root
+  element in an XML document. This may allow a remote attacker to cause a
+  consumption of memory resources.
+patched_versions:
+  - ">= 1.6.3"

data/data/ruby-advisory-db/gems/nokogiri/OSVDB-90946.yml ADDED

@@ -0,0 +1,15 @@
+---
+gem: nokogiri
+cve: 2012-6685
+osvdb: 90946
+url: http://www.osvdb.org/show/osvdb/90946
+title: Nokogiri Gem for Ruby External Entity (XXE) Expansion Internal Network Response Remote Disclosure
+date: 2012-06-08
+description: libxml2 contains a flaw that may lead to unauthorized disclosure of
+ potentially sensitive information. The issue is triggered when handling the
+ expansion of XML external entities (XXE), which can be used to trigger URL's
+ on an internal network and allow a remote attacker to gain access to their
+ responses.
+cvss_v2: 5.0
+patched_versions:
+  - ">= 1.5.4"

data/data/ruby-advisory-db/gems/open-uri-cached/OSVDB-121701.yml ADDED

@@ -0,0 +1,13 @@
+---
+gem: open-uri-cached
+cve: 2015-3649
+osvdb: 121701
+url: http://seclists.org/oss-sec/2015/q2/373
+title: open-uri-cached Gem for Ruby Unsafe Temporary File Creation Local Privilege Escalation
+date: 2015-05-05
+description: |
+  open-uri-cached Gem for Ruby contains a flaw that is due to the
+  program creating temporary files in a predictable, unsafe manner when using
+  YAML. This may allow a local attacker to gain elevated privileges.
+cvss_v2:
+patched_versions:

data/data/ruby-advisory-db/gems/paperclip/CVE-2015-2963.yml ADDED

@@ -0,0 +1,16 @@
+---
+gem: paperclip
+cve: 2015-2963
+url: https://robots.thoughtbot.com/paperclip-security-release
+title: |
+  Paperclip Gem for Ruby vulnerable to content type spoofing
+date: 2015-06-05
+description: |
+  There is an issue where if an HTML file is uploaded with a .html
+  extension, but the content type is listed as being `image/jpeg`, this
+  will bypass a validation checking for images. But it will also pass the
+  spoof check, because a file named .html and containing actual HTML
+  passes the spoof check.
+cvss_v2: 4.3
+patched_versions:
+  - ">= 4.2.2"

data/data/ruby-advisory-db/gems/paratrooper-newrelic/OSVDB-101839.yml CHANGED

@@ -3,10 +3,11 @@ gem: paratrooper-newrelic
 cve: 2014-1234
 osvdb: 101839
 url: http://www.osvdb.org/show/osvdb/101839
-title: Paratrooper-newrelic Gem for Ruby contains a flaw
+title: Paratrooper-newrelic Gem for Ruby Process Listing API Key Local Disclosure
 date: 2014-01-08
-description: Paratrooper-newrelic Gem for Ruby contains a flaw in /lib/paratrooper-newrelic.rb.
-  The issue is triggered when the script exposes the API key, allowing a local attacker to
-  gain access to it by monitoring the process tree.
+description: |
+  Paratrooper-newrelic Gem for Ruby contains a flaw in
+  /lib/paratrooper-newrelic.rb. The issue is triggered when the script exposes
+  the API key, allowing a local attacker to gain access to it by monitoring the
+  process tree.
 cvss_v2: 2.1
-patched_versions:

data/data/ruby-advisory-db/gems/paratrooper-pingdom/OSVDB-101847.yml CHANGED

@@ -3,11 +3,11 @@ gem: paratrooper-pingdom
 cve: 2014-1233
 osvdb: 101847
 url: http://www.osvdb.org/show/osvdb/101847
-title: Paratrooper-pingdom Gem for Ruby contains a flaw
+title: paratrooper-pingdom Gem for Ruby /lib/paratrooper-pingdom.rb API Login Credentials Local Disclosure
 date: 2013-12-26
-description: paratrooper-pingdom Gem for Ruby contains a flaw in /lib/paratrooper-pingdom.rb.
-  The issue is triggered when the script exposes API login credentials, allowing a local
-  attacker to gain access to the API key, username, and password for the API login by
-  monitoring the process tree.
+description: |
+  paratrooper-pingdom Gem for Ruby contains a flaw in
+  /lib/paratrooper-pingdom.rb. The issue is triggered when the script exposes
+  API login credentials, allowing a local attacker to gain access to the API
+  key, username, and password for the API login by monitoring the process tree.
 cvss_v2: 2.1
-patched_versions:

data/data/ruby-advisory-db/gems/passenger/CVE-2014-1831.yml ADDED

@@ -0,0 +1,13 @@
+---
+gem: passenger
+cve: 2014-1831
+osvdb: 102613
+url: http://osvdb.org/show/osvdb/102613
+title: Phusion Passenger Server Instance Directory Creation Local Symlink File Overwrite
+date: 2014-01-28
+description: Phusion Passenger contains a flaw as the program creates the server instance
+  directory insecurely. It is possible for a local attacker to use a symlink attack against
+  the directory to cause the program to unexpectedly overwrite an arbitrary file.
+cvss_v2: 2.1
+patched_versions:
+  - ">= 4.0.37"

data/data/ruby-advisory-db/gems/passenger/CVE-2014-1832.yml ADDED

@@ -0,0 +1,13 @@
+---
+gem: passenger
+cve: 2014-1832
+osvdb: 102613
+url: http://osvdb.org/show/osvdb/102613
+title: Phusion Passenger Server Instance Directory Creation Local Symlink File Overwrite
+date: 2014-01-29
+description: Phusion Passenger contains a flaw as the program creates the server instance
+  directory insecurely. It is possible for a local attacker to use a symlink attack against
+  the directory to cause the program to unexpectedly overwrite an arbitrary file.
+cvss_v2: 2.1
+patched_versions:
+  - ">= 4.0.38"

data/data/ruby-advisory-db/gems/passenger/CVE-2015-7519.yml ADDED

@@ -0,0 +1,17 @@
+---
+gem: passenger
+cve: 2015-7519
+url: https://blog.phusion.nl/2015/12/07/cve-2015-7519/
+title: Phusion Passenger Server allows to overwrite headers in some cases
+date: 2015-11-23
+description: It is possible in some cases, for clients to overwrite headers
+  set by the server, resulting in a medium level security issue.
+  Passenger 5 uses an SCGI-inspired format to pass headers to Ruby/Python
+  applications, while Passenger 4 uses an SCGI-inspired format to pass
+  headers to all applications. This implies a conversion to
+  UPPER_CASE_WITH_UNDERSCORES whereby the difference between characters
+  like '-' and '_' is lost.
+patched_versions:
+  - "~> 4.0.60"
+  - ">= 5.0.22"

data/data/ruby-advisory-db/gems/passenger/OSVDB-90738.yml ADDED

@@ -0,0 +1,16 @@
+---
+gem: passenger
+cve: 2012-6135
+osvdb: 90738
+url: http://old.blog.phusion.nl/2013/03/05/phusion-passenger-4-0-beta-1-and-2-arbitrary-file-deletion-vulnerability/
+title: Phusion Passenger Gem for Ruby Arbitrary File Deletion
+date: 2012-02-01
+description: Phusion Passenger Gem for Ruby contains a flaw that is triggered
+  during application startup. This issue may allow a local attacker to delete
+  arbitrary files via an application process. If the program has completed the
+  start up process this vulnerability is no longer exploitable.
+cvss_v2: 2.1
+patched_versions:
+  - ">= 4.0.0"
+unaffected_versions:
+  - "< 4.0.0"

data/data/ruby-advisory-db/gems/passenger/OSVDB-93752.yml ADDED

@@ -0,0 +1,15 @@
+---
+gem: passenger
+cve: 2013-2119
+osvdb: 93752
+url: http://osvdb.org/show/osvdb/93752
+title: Phusion Passenger Gem for Ruby Predictable Temporary Filename Generation Symlink Local Privilege Escalation
+date: 2013-05-29
+description: Phusion Passenger Gem for Ruby contains a flaw as the program creates
+  temporary files insecurely. It is possible for a local attacker to use a symlink
+  attack against the Nginx config file to cause the program to unexpectedly overwrite
+  the file, allowing a local attacker to execute code with elevated privileges.
+cvss_v2: 4.6
+patched_versions:
+  - "~> 3.0.21"
+  - ">= 4.0.5"

data/data/ruby-advisory-db/gems/passenger/OSVDB-94074.yml ADDED

@@ -0,0 +1,14 @@
+---
+gem: passenger
+cve: 2013-4136
+osvdb: 94074
+url: http://osvdb.org/show/osvdb/94074
+title: Phusion Passenger Gem for Ruby Utils.cpp Temporary Directory Creation Symlink Local Privilege Escalation
+date: 2013-06-10
+description: Phusion Passenger Gem for Ruby contains a flaw as the program creates
+  temporary directories insecurely. It is possible for a local attacker to use a
+  symlink attack against the Utils.cpp file to allow the attacker to gain elevated
+  privileges.
+cvss_v2: 4.6
+patched_versions:
+  - ">= 4.0.8"

data/data/ruby-advisory-db/gems/point-cli/OSVDB-108577.yml ADDED

@@ -0,0 +1,8 @@
+---
+gem: point-cli
+cve: 2014-4997
+osvdb: 108577
+url: http://osvdb.org/show/osvdb/108577
+title: point-cli Gem for Ruby /lib/commands/setup.rb Process Table Local Plaintext Credential Disclosure
+date: 2014-06-30
+description: point-cli Gem for Ruby contains a flaw in /lib/commands/setup.rb that is due to the application exposing credential information in plaintext in the process table. This may allow a local attacker to gain access to credential information.

data/data/ruby-advisory-db/gems/quick_magick/OSVDB-106954.yml ADDED

@@ -0,0 +1,7 @@
+---
+gem: quick_magick
+osvdb: 106954
+url: http://osvdb.org/show/osvdb/106954
+title: quick_magick Gem for Ruby QuickMagick::Image.read Function Crafted String Handling Remote Command Injection
+date: 2011-01-12
+description: quick_magick Gem for Ruby contains a flaw in the QuickMagick::Image.read function. The issue is triggered when handling a specially crafted string. This may allow a remote attacker to inject arbitrary commands.

data/data/ruby-advisory-db/gems/rack-attack/OSVDB-132234.yml ADDED

@@ -0,0 +1,26 @@
+---
+gem: rack-attack
+osvdb: 132234
+url: https://github.com/kickstarter/rack-attack/releases/tag/v4.3.1
+title: |
+  rack-attack Gem for Ruby missing normalization before request path
+  processing
+date: 2015-12-18
+description: |
+  When using rack-attack with a rails app, developers expect the request
+  path to be normalized. In particular, trailing slashes are stripped so
+  a request path "/login/" becomes "/login" by the time you're in
+  ActionController.
+  Since Rack::Attack runs before ActionDispatch, the request path is not
+  yet normalized. This can cause throttles and blacklists to not work as
+  expected.
+  E.g., a throttle:
+  `throttle('logins', ...) {|req| req.path == "/login" }`
+  would not match a request to '/login/', though Rails would route
+  '/login/' to the same '/login' action.
+patched_versions:
+  - ">= 4.3.1"

data/data/ruby-advisory-db/gems/rack-ssl/OSVDB-104734.yml ADDED

@@ -0,0 +1,11 @@
+---
+gem: rack-ssl
+cve: 2014-2538
+osvdb: 104734
+url: http://osvdb.org/show/osvdb/104734
+title: rack-ssl Gem for Ruby Error Message Reflected XSS
+date: 2013-07-09
+description: rack-ssl Gem for Ruby contains a flaw that allows a reflected cross-site scripting (XSS) attack. This flaw exists because the program does not validate input passed via error messages before returning it to users. This may allow a context-dependent attacker to create a specially crafted request that would execute arbitrary script code in a user's browser session within the trust relationship between their browser and the server.
+cvss_v2: 4.3
+patched_versions:
+  - ">= 1.3.4"

data/data/ruby-advisory-db/gems/rack/CVE-2015-3225.yml ADDED

@@ -0,0 +1,18 @@
+---
+gem: rack
+cve: 2015-3225
+url: https://groups.google.com/forum/#!topic/ruby-security-ann/gcUbICUmKMc
+title: |
+  Potential Denial of Service Vulnerability in Rack
+date: 2015-06-16
+description: |
+  Carefully crafted requests can cause a `SystemStackError` and potentially
+  cause a denial of service attack.
+  All users running an affected release should upgrade.
+patched_versions:
+  - ">= 1.6.2"
+  - "~> 1.5.4"
+  - "~> 1.4.6"

data/data/ruby-advisory-db/gems/rack/OSVDB-78121.yml ADDED

@@ -0,0 +1,21 @@
+---
+gem: rack
+cve: 2011-5036
+osvdb: 78121
+url: http://osvdb.org/show/osvdb/78121
+title: |
+  Rack Hash Collision Form Parameter Parsing Remote DoS
+date: 2011-12-28
+description: |
+  Rack contains a flaw that may allow a remote denial of service. The issue is
+  triggered when an attacker sends multiple crafted parameters which trigger
+  hash collisions, and will result in loss of availability for the program via
+  CPU consumption.
+cvss_v2: 5.0
+patched_versions:
+  - "~> 1.1.3"
+  - "~> 1.2.5"
+  - "~> 1.3.6"
+  - ">= 1.4.0"

data/data/ruby-advisory-db/gems/rack/OSVDB-89317.yml ADDED

@@ -0,0 +1,21 @@
+---
+gem: rack
+cve: 2012-6109
+osvdb: 89317
+url: http://osvdb.org/show/osvdb/89317
+title: |
+  Rack Regular Expressions Engine Content-Disposition Header Parsing Infinite Loop Remote DoS
+date: 2012-05-04
+description: |
+  Rack contains a flaw in the Regular Expressions Engine that may allow a remote
+  denial of service. The issue is triggered when parsing context-disposition
+  headers. With a specially crafted header, a remote attacker can cause an
+  infinite loop, which will result in a loss of availability for the webserver.
+cvss_v2: 4.3
+patched_versions:
+  - "~> 1.1.4"
+  - "~> 1.2.6"
+  - "~> 1.3.7"
+  - ">= 1.4.2"

data/data/ruby-advisory-db/gems/rack/OSVDB-89320.yml ADDED

@@ -0,0 +1,19 @@
+---
+gem: rack
+cve: 2013-0183
+osvdb: 89320
+url: http://osvdb.org/show/osvdb/89320
+title: |
+  Rack Long String Parsing Memory Consumption Remote DoS
+date: 2013-01-07
+description: |
+  Rack contains a flaw that may allow a remote denial of service. The issue is
+  triggered when parsing an overly long string. With a specially crafted string,
+  a remote attacker can cause a consumption of memory. This will result in a
+  loss of availability for the webserver.
+cvss_v2: 5.0
+patched_versions:
+  - "~> 1.3.8"
+  - ">= 1.4.3"

data/data/ruby-advisory-db/gems/rack/OSVDB-89327.yml ADDED

@@ -0,0 +1,20 @@
+---
+gem: rack
+cve: 2013-0184
+osvdb: 89327
+url: http://osvdb.org/show/osvdb/89327
+title: |
+  Rack Rack::Auth::AbstractRequest Class Unspecified Remote DoS
+date: 2013-01-13
+description: |
+  Rack contains a flaw in the Rack::Auth::AbstractRequest class that may allow
+  a remote denial of service. The issue is triggered when an unspecified error
+  occurs, which will result in a loss of availability for the webserver.
+cvss_v2: 4.3
+patched_versions:
+  - "~> 1.1.5"
+  - "~> 1.2.7"
+  - "~> 1.3.9"
+  - ">= 1.4.4"

data/data/ruby-advisory-db/gems/rack/OSVDB-89938.yml ADDED

@@ -0,0 +1,18 @@
+---
+gem: rack
+cve: 2013-0262
+osvdb: 89938
+url: http://osvdb.org/show/osvdb/89938
+title: |
+  Rack Rack::File Function Symlink Traversal Arbitrary File Disclosure
+date: 2013-02-07
+description: |
+  Rack contains a flaw as the Rack::File function creates temporary files
+  insecurely. It is possible for a local attacker to use a symlink attack to
+  traverse to an arbitrary file and disclose its contents
+cvss_v2: 4.3
+patched_versions:
+- "~> 1.4.5"
+- ">= 1.5.2"

data/data/ruby-advisory-db/gems/rack/OSVDB-89939.yml CHANGED

@@ -1,11 +1,11 @@
----
+---
 gem: rack
 cve: 2013-0263
 osvdb: 89939
 url: http://osvdb.org/show/osvdb/89939
 title: |
-  Rack Rack::Session::Cookie Function Timing Attack Remote Code Execution
-date: 2009-12-01
+  Rack Rack::Session::Cookie Function Timing Attack Remote Code Execution
+date: 2013-02-07
 description: |
   Rack contains a flaw that is due to an error in the Rack::Session::Cookie
@@ -15,9 +15,9 @@ description: |
   latencies are sufficiently low to make the attack viable.
 cvss_v2: 5.1
-patched_versions:
-- ~> 1.1.6
-- ~> 1.2.8
-- ~> 1.3.10
-- ~> 1.4.5
-- ">= 1.5.2"
+patched_versions:
+  - ~> 1.1.6
+  - ~> 1.2.8
+  - ~> 1.3.10
+  - ~> 1.4.5
+  - ">= 1.5.2"

data/data/ruby-advisory-db/gems/rails-html-sanitizer/CVE-2015-7578.yml ADDED

@@ -0,0 +1,47 @@
+---
+gem: rails-html-sanitizer
+cve: 2015-7578
+date: 2016-01-25
+url: "https://groups.google.com/forum/#!topic/rubyonrails-security/uh--W4TDwmI"
+title: Possible XSS vulnerability in rails-html-sanitizer
+description: |
+  There is a possible XSS vulnerability in rails-html-sanitizer. This
+  vulnerability has been assigned the CVE identifier CVE-2015-7578.
+  Versions Affected:  All.
+  Not affected:       None.
+  Fixed Versions:     1.0.3
+  Impact
+  ------
+  There is a possible XSS vulnerability in rails-html-sanitizer.  Certain
+  attributes are not removed from tags when they are sanitized, and these
+  attributes can lead to an XSS attack on target applications.
+  All users running an affected release should either upgrade or use one of the
+  workarounds immediately.
+  Releases
+  --------
+  The FIXED releases are available at the normal locations.
+  Workarounds
+  -----------
+  There are no feasible workarounds for this issue.
+  Patches
+  -------
+  To aid users who aren't able to upgrade immediately we have provided patches for
+  the two supported release series. They are in git-am format and consist of a
+  single changeset.
+  * 1-0-sanitize_data_attributes.patch - Patch for 1.0 series
+  Credits
+  -------
+  Thanks to Ben Murphy and Marien for reporting this.
+patched_versions:
+  - "~> 1.0.3"