RubyGems - bundler-audit - Versions diffs - 0.6.1 → 0.8.0 - Mend

bundler-audit 0.6.1 → 0.8.0

Files changed (426) hide show

data/data/ruby-advisory-db/gems/ciborg/OSVDB-108586.yml DELETED Viewed

@@ -1,8 +0,0 @@
----
-gem: ciborg
-cve: 2014-5003
-osvdb: 108586
-url: http://osvdb.org/show/osvdb/108586
-title: ciborg Gem for Ruby default.rb /tmp/perlbrew-installer Local Symlink File Overwrite
-date: 2014-06-30
-description: ciborg Gem for Ruby contains a flaw as default.rb creates temporary files insecurely. It is possible for a local attacker to use a symlink attack against the /tmp/perlbrew-installer file to cause the program to unexpectedly overwrite an arbitrary file.

data/data/ruby-advisory-db/gems/cocaine/OSVDB-98835.yml DELETED Viewed

@@ -1,15 +0,0 @@
----
-gem: cocaine
-cve: 2013-4457
-osvdb: 98835
-url: http://www.osvdb.org/show/osvdb/98835
-title: Cocaine Gem for Ruby contains a flaw
-date: 2013-10-22
-description: Cocaine Gem for Ruby contains a flaw that is due to the method
-  of variable interpolation used by the program. With a specially crafted
-  object, a context-dependent attacker can execute arbitrary commands.
-cvss_v2: 6.8
-unaffected_versions:
-  - < 0.4.0
-patched_versions:
-  - '>= 0.5.3'

data/data/ruby-advisory-db/gems/codders-dataset/OSVDB-108582.yml DELETED Viewed

@@ -1,8 +0,0 @@
----
-gem: codders-dataset
-cve: 2014-4991
-osvdb: 108582
-url: http://osvdb.org/show/osvdb/108582
-title: codders-dataset Gem for Ruby /lib/dataset/database/postgresql.rb Process Table Local Plaintext Credential Disclosure
-date: 2014-06-30
-description: codders-dataset Gem for Ruby contains a flaw in /lib/dataset/database/postgresql.rb that is due to the application exposing credential information in plaintext in the process table. This may allow a local attacker to gain access to credential information.

data/data/ruby-advisory-db/gems/codders-dataset/OSVDB-108583.yml DELETED Viewed

@@ -1,8 +0,0 @@
----
-gem: codders-dataset
-cve: 2014-4991
-osvdb: 108583
-url: http://osvdb.org/show/osvdb/108583
-title: codders-dataset Gem for Ruby /lib/dataset/database/mysql.rb Process Table Local Plaintext Credential Disclosure
-date: 2014-06-30
-description: codders-dataset Gem for Ruby contains a flaw in /lib/dataset/database/mysql.rb that is due to the application exposing credential information in plaintext in the process table. This may allow a local attacker to gain access to credential information.

data/data/ruby-advisory-db/gems/colorscore/CVE-2015-7541.yml DELETED Viewed

@@ -1,21 +0,0 @@
----
-gem: colorscore
-cve: 2015-7541
-osvdb: 132516
-url: http://seclists.org/oss-sec/2016/q1/17
-title: colorscore Gem for Ruby lib/colorscore/histogram.rb Arbitrary Command Injection
-date: 2016-01-04
-description: |
-  The contents of the `image_path`, `colors`, and `depth` variables generated
-  from possibly user-supplied input are passed directly to the shell via
-  `convert ...`.
-  If a user supplies a value that includes shell metacharacters such as ';', an
-  attacker may be able to execute shell commands on the remote system as the
-  user id of the Ruby process.
-  To resolve this issue, the aforementioned variables (especially `image_path`)
-  must be sanitized for shell metacharacters.
-patched_versions:
-  - '>= 0.0.5'

data/data/ruby-advisory-db/gems/command_wrap/OSVDB-91450.yml DELETED Viewed

@@ -1,9 +0,0 @@
----
-gem: command_wrap
-cve: 2013-1875
-osvdb: 91450
-url: http://osvdb.org/show/osvdb/91450
-title: command_wrap Gem for Ruby URI Handling Arbitrary Command Injection
-date: 2013-03-18
-description: command_wrap Gem for Ruby contains a flaw that is triggered during the handling of input passed via the URL that contains a semicolon character (;). This will allow a remote attacker to inject arbitrary commands and have them executed in the context of the user clicking it.
-cvss_v2: 7.5

data/data/ruby-advisory-db/gems/crack/OSVDB-90742.yml DELETED Viewed

@@ -1,17 +0,0 @@
----
-gem: crack
-cve: 2013-1800
-osvdb: 90742
-url: http://osvdb.org/show/osvdb/90742
-title: crack Gem for Ruby Type Casting Parameter Parsing Remote Code Execution
-description: |
-  crack Gem for Ruby contains a flaw that is triggered when a type casting
-  error occurs during the parsing of parameters. This may allow a
-  context-dependent attacker to potentially execute arbitrary code.
-date: 2013-01-09
-cvss_v2: 7.5
-patched_versions:
-  - ">= 0.3.2"

data/data/ruby-advisory-db/gems/cremefraiche/OSVDB-93395.yml DELETED Viewed

@@ -1,11 +0,0 @@
----
-gem: cremefraiche
-cve: 2013-2090
-osvdb: 93395
-url: http://osvdb.org/show/osvdb/93395
-title: Creme Fraiche Gem for Ruby File Name Shell Metacharacter Injection Arbitrary Command Execution
-date: 2013-05-14
-description: Creme Fraiche Gem for Ruby contains a flaw that is due to the program failing to properly sanitize input in file names. With a specially crafted file name that contains shell metacharacters, a context-dependent attacker can execute arbitrary commands
-cvss_v2: 9.3
-patched_versions:
-  - ">= 0.6.1"

data/data/ruby-advisory-db/gems/curb/OSVDB-114600.yml DELETED Viewed

@@ -1,12 +0,0 @@
----
-gem: curb
-osvdb: 114600
-url: http://osvdb.org/show/osvdb/114600
-title: curb Gem for Ruby Empty http_put Body Handling Remote DoS
-date: 2010-08-12
-description: |
-  curb Gem for Ruby contains a flaw that is triggered when handling an empty
-  http_put body. This may allow a remote attacker to crash an application
-  linked against the library.
-patched_versions:
-  - ">= 0.7.8"

data/data/ruby-advisory-db/gems/curl/OSVDB-91230.yml DELETED Viewed

@@ -1,13 +0,0 @@
----
-gem: curl
-cve: 2013-2617
-osvdb: 91230
-url: http://osvdb.org/show/osvdb/91230
-title: Curl Gem for Ruby URI Handling Arbitrary Command Injection
-date: 2013-03-12
-description: Curl Gem for Ruby contains a flaw that is triggered during the
-  handling of specially crafted input passed via the URL.  This may allow
-  a context-dependent attacker to potentially execute arbitrary commands by
-  injecting them via a semi-colon (;).
-cvss_v2: 7.5
-patched_versions:

data/data/ruby-advisory-db/gems/devise-two-factor/CVE-2015-7225.yml DELETED Viewed

@@ -1,22 +0,0 @@
----
-gem: devise-two-factor
-cve: 2015-7225
-url: http://www.openwall.com/lists/oss-security/2015/09/06/2
-title: |
-  devise-two-factor 1.1.0 and earlier vulnerable to replay attacks
-date: 2015-09-17
-description: |
-  A OTP replay vulnerability in devise-two-factor 1.1.0 and earlier allows local
-  attackers to shoulder-surf a user's TOTP verification code and use it to
-  login after the user has authenticated.
-  By not "burning" a previously used TOTP, devise-two-factor allows a narrow
-  window of opportunity (aka the timestep period) where an attacker can re-use a
-  verification code.
-  Should an attacker possess a given user's authentication
-  credentials, this flaw effectively defeats two-factor authentication for the
-  duration of the timestep.
-patched_versions:
-  - ">= 2.0.0"

data/data/ruby-advisory-db/gems/devise/CVE-2015-8314.yml DELETED Viewed

@@ -1,14 +0,0 @@
----
-gem: devise
-cve: 2015-8314
-url: http://blog.plataformatec.com.br/2016/01/improve-remember-me-cookie-expiration-in-devise/
-title: Devise Gem for Ruby Unauthorized Access Using Remember Me Cookie
-date: 2016-01-18
-description: |
-  Devise version before 3.5.4 uses cookies to implement a "Remember me"
-  functionality. However, it generates the same cookie for all devices. If an
-  attacker manages to steal a remember me cookie and the user does not change
-  the password frequently, the cookie can be used to gain access to the
-  application indefinitely.
-patched_versions:
-  - ">= 3.5.4"

data/data/ruby-advisory-db/gems/devise/OSVDB-114435.yml DELETED Viewed

@@ -1,17 +0,0 @@
----
-gem: devise
-osvdb: 114435
-url: http://blog.plataformatec.com.br/2013/08/csrf-token-fixation-attacks-in-devise/
-title: CSRF token fixation attacks in Devise
-date: 2013-08-02
-description: |
-  Devise contains a flaw that allows a remote, user-assisted attacker to
-  conduct a CSRF token fixation attack. This issue is triggered as previous
-  CSRF tokens are not properly invalidated when a new token is created.
-  If an attacker has knowledge of said token, a specially crafted request can
-  be made to it, allowing the attacker to conduct CSRF attacks.
-patched_versions:
-  - ~> 2.2.5
-  - ">= 3.0.1"

data/data/ruby-advisory-db/gems/devise/OSVDB-89642.yml DELETED Viewed

@@ -1,20 +0,0 @@
----
-gem: devise
-cve: 2013-0233
-osvdb: 89642
-url: http://osvdb.org/show/osvdb/89642
-title: Devise Database Type Conversion Crafted Request Parsing Security Bypass
-date: 2013-01-28
-description: |
-  Devise contains a flaw that is triggered during when a type conversion error
-  occurs during the parsing of a malformed request. With a specially crafted
-  request, a remote attacker can bypass security restrictions.
-cvss_v2: 6.8
-patched_versions:
-  - ~> 1.5.4
-  - ~> 2.0.5
-  - ~> 2.1.3
-  - ">= 2.2.3"

data/data/ruby-advisory-db/gems/doorkeeper/CVE-2014-8144.yml DELETED Viewed

@@ -1,26 +0,0 @@
----
-gem: doorkeeper
-cve: 2014-8144
-osvdb: 116010
-url: https://groups.google.com/forum/#!topic/ruby-security-ann/5_VqJtNc8jw
-title: |
-  Cross-site request forgery (CSRF) vulnerability in doorkeeper 1.4.0
-  and earlier.
-date: 2014-12-18
-description: |
-  Cross-site request forgery (CSRF) vulnerability in doorkeeper 1.4.0
-  and earlier allows remote attackers to hijack the user's OAuth
-  autorization code. This vulnerability has been assigned the CVE
-  identifier CVE-2014-8144.
-  Doorkeeper's endpoints didn't have CSRF protection. Any HTML document
-  on the Internet can then read a user's authorization code with
-  arbitrary scope from any Doorkeeper-compatible Rails app you are
-  logged in.
-cvss_v2: 6.8
-patched_versions:
-  - ~> 1.4.1
-  - ">= 2.0.0"

data/data/ruby-advisory-db/gems/doorkeeper/CVE-2016-6582.yml DELETED Viewed

@@ -1,43 +0,0 @@
----
-gem: doorkeeper
-cve: 2016-6582
-date: 2016-08-18
-url: "http://www.openwall.com/lists/oss-security/2016/08/19/2"
-title: Doorkeeper gem does not revoke tokens & uses wrong auth/auth method
-description: |
-  Doorkeeper failed to implement OAuth 2.0 Token Revocation (RFC 7009) in the
-  following ways:
-  1. Public clients making valid, unauthenticated calls to revoke a token
-     would not have their token revoked
-  2. Requests were not properly authenticating the *client credentials* but
-     were, instead, looking at the access token in a second location
-  3. Because of 2, the requests were also not authorizing confidential
-     clients' ability to revoke a given token. It should only revoke tokens
-     that belong to it.
-  The security implication is: OAuth 2.0 clients who "log out" a user expect
-  to have the corresponding access & refresh tokens revoked, preventing an
-  attacker who may have already hijacked the session from continuing to
-  impersonate the victim. Because of the bug described above, this is not the
-  case. As far as OWASP is concerned, this counts as broken authentication
-  design.
-  MITRE has assigned CVE-2016-6582 due to the security issues raised. An
-  attacker, thanks to 1, can replay a hijacked session after a victim logs
-  out/revokes their token. Additionally, thanks to 2 & 3, an attacker via a
-  compromised confidential client could "grief" other clients by revoking
-  their tokens (albeit this is an exceptionally narrow attack with little
-  value).
-unaffected_versions:
-  - "< 1.2.0"
-patched_versions:
-  - ">= 4.2.0"
-related:
-  url:
-    - https://github.com/doorkeeper-gem/doorkeeper/commit/fb938051777a3c9cb071e96fc66458f8f615bd53

data/data/ruby-advisory-db/gems/doorkeeper/OSVDB-118830.yml DELETED Viewed

@@ -1,17 +0,0 @@
----
-gem: doorkeeper
-osvdb: 118830
-url: http://www.osvdb.org/show/osvdb/118830
-title: |
-  Doorkeeper Gem for Ruby stores sensitive information
-  in production logs
-date: 2015-02-10
-description: |
-  Doorkeeper Gem for Ruby contains a flaw in lib/doorkeeper/engine.rb.
-  The issue is due to the program storing sensitive information in
-  production logs. This may allow a local attacker to gain access to
-  sensitive information.
-cvss_v2:
-patched_versions:
-  - "~> 1.4.2"
-  - ">= 2.1.2"

data/data/ruby-advisory-db/gems/dragonfly/OSVDB-110439.yml DELETED Viewed

@@ -1,13 +0,0 @@
----
-gem: dragonfly
-osvdb: 110439
-url: http://osvdb.org/show/osvdb/110439
-title: Dragonfly Gem for Ruby Image Uploading & Processing Remote Command Execution
-date: 2014-08-25
-description: |
-  Dragonfly Gem for Ruby contains a flaw in Uploading & Processing that is due
-  to the gem failing to restrict arbitrary commands to imagemagicks convert.
-  This may allow a remote attacker to gain read/write access to the filesystem
-  and execute arbitrary commands.
-patched_versions:
-  - ">= 1.0.7"

data/data/ruby-advisory-db/gems/dragonfly/OSVDB-90647.yml DELETED Viewed

@@ -1,16 +0,0 @@
----
-gem: dragonfly
-cve: 2013-1756
-osvdb: 90647
-url: http://www.osvdb.org/show/osvdb/90647
-title: Dragonfly Gem for Ruby Crafted Request Parsing Remote Code Execution
-date: 2013-02-19
-description: |
-  Dragonfly Gem for Ruby contains a flaw that is triggered during the parsing
-  of a specially crafted request. This may allow a remote attacker to execute
-  arbitrary code.
-cvss_v2: 7.5
-patched_versions:
-  - ">= 0.9.13"
-unaffected_versions:
-  - "< 0.7.0"

data/data/ruby-advisory-db/gems/dragonfly/OSVDB-96798.yml DELETED Viewed

@@ -1,14 +0,0 @@
----
-gem: dragonfly
-cve: 2013-5671
-osvdb: 96798
-url: http://osvdb.org/show/osvdb/96798
-title: fog-dragonfly Gem for Ruby imagemagickutils.rb Remote Command Execution
-date: 2013-09-03
-description: |
-  fog-dragonfly Gem for Ruby contains a flaw that is due to the program
-  failing to properly sanitize input passed via the imagemagickutils.rb script.
-  This may allow a remote attacker to execute arbitrary commands.
-cvss_v2: 7.5
-patched_versions:
-  - ">= 0.8.4"

data/data/ruby-advisory-db/gems/dragonfly/OSVDB-97854.yml DELETED Viewed

@@ -1,12 +0,0 @@
----
-gem: dragonfly
-osvdb: 97854
-url: http://osvdb.org/show/osvdb/97854
-title: Dragonfly Gem for Ruby on Windows Shell Escaping Weakness
-date: 2011-09-01
-description: |
-  Dragonfly Gem for Ruby contains a flaw that is due to the program failing to
-  properly escape a shell that contains injected characters. This may allow a
-  context-dependent attacker to potentially execute arbitrary commands.
-patched_versions:
-  - ">= 0.9.6"

data/data/ruby-advisory-db/gems/echor/OSVDB-102129.yml DELETED Viewed

@@ -1,12 +0,0 @@
----
-gem: echor
-cve: 2014-1834
-osvdb: 102129
-url: http://osvdb.org/show/osvdb/102129
-title: echor Gem for Ruby backplane.rb perform_request Function Arbitrary Command Execution
-date: 2014-01-14
-description: |
-  Echor Gem for Ruby contains a flaw in backplane.rb in the perform_request
-  function that is triggered when a semi-colon (;) is injected into a username
-  or password. This may allow a context-dependent attacker to inject arbitrary
-  commands if the gem is used in a rails application.

data/data/ruby-advisory-db/gems/echor/OSVDB-102130.yml DELETED Viewed

@@ -1,11 +0,0 @@
----
-gem: echor
-cve: 2014-1835
-osvdb: 102130
-url: http://osvdb.org/show/osvdb/102130
-title: echor Gem for Ruby Process Listing Local Plaintext Credential Disclosure
-date: 2014-01-14
-description: |
-  echor Gem for Ruby contains a flaw that is due to the program exposing
-  credential information in the system process listing. This may allow a local
-  attacker to gain access to plaintext credential information.

data/data/ruby-advisory-db/gems/ember-source/CVE-2013-4170.yml DELETED Viewed

@@ -1,25 +0,0 @@
----
-gem: ember-source
-cve: 2013-4170
-url: https://groups.google.com/forum/#!topic/ember-security/dokLVwwxAdM
-title: |
-  Ember.js Potential XSS Exploit When Binding `tagName` to User-Supplied Data
-date: 2013-07-25
-description: |
-  In general, Ember.js escapes or strips any user-supplied content
-  before inserting it in strings that will be sent to innerHTML.
-  However, the `tagName` property of an `Ember.View` was inserted into
-  such a string without being sanitized. This means that if an
-  application assigns a view's `tagName` to user-supplied data, a
-  specially-crafted payload could execute arbitrary JavaScript in the
-  context of the current domain ("XSS").
-  This vulnerability only affects applications that assign or bind
-  user-provided content to `tagName`.
-patched_versions:
-  - ~> 1.0.0.rc1.1
-  - ~> 1.0.0.rc2.1
-  - ~> 1.0.0.rc3.1
-  - ~> 1.0.0.rc4.1
-  - ~> 1.0.0.rc5.1
-  - ">= 1.0.0.rc6.1"

data/data/ruby-advisory-db/gems/ember-source/CVE-2014-0013.yml DELETED Viewed

@@ -1,33 +0,0 @@
----
-gem: ember-source
-cve: 2014-0013
-url: https://groups.google.com/forum/#!topic/ember-security/2kpXXCxISS4
-title: |
-  Ember.js Potential XSS Exploit With User-Supplied Data When Binding
-  Primitive Values
-date: 2014-01-14
-description: |
-  In general, Ember.js escapes or strips any user-supplied content before
-  inserting it in strings that will be sent to innerHTML.  However, we have
-  identified a vulnerability that could lead to unescaped content being inserted
-  into the innerHTML string without being sanitized.
-  When a primitive value is used as the Handlebars context, that value is not
-  properly escaped.  An example of this would be using the `{{each}}` helper to
-  iterate over an array of user-supplied strings and using `{{this}}` inside the
-  block to display each string.
-  In applications that contain templates whose context is a primitive value and
-  use the `{{this}}` keyword to display that value, a specially-crafted payload
-  could execute arbitrary JavaScript in the context of the current domain
-  ("XSS").
-  This vulnerability affects applications that contain templates whose context is
-  set to a user-supplied primitive value (such as a string or number) and also
-  contain the `{{this}}` special Handlebars variable to display the value.
-patched_versions:
-  - ~> 1.0.1
-  - ~> 1.1.3
-  - ~> 1.2.1
-  - ~> 1.3.1
-  - ">= 1.4.0.beta.2"