RubyGems - bundler-audit - Versions diffs - 0.6.1 → 0.9.0.1 - Mend

bundler-audit 0.6.1 → 0.9.0.1

Files changed (436) hide show

data/data/ruby-advisory-db/gems/actionpack/CVE-2016-2097.yml DELETED Viewed

@@ -1,90 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2016-2097
-date: 2016-02-29
-url: "https://groups.google.com/forum/#!topic/rubyonrails-security/ddY6HgqB2z4"
-title: Possible Information Leak Vulnerability in Action View
-description: |
-  There is a possible directory traversal and information leak vulnerability
-  in Action View. This was meant to be fixed on CVE-2016-0752. However the 3.2
-  patch was not covering all the scenarios. This vulnerability has been
-  assigned the CVE identifier CVE-2016-2097.
-  Versions Affected:  3.2.x, 4.0.x, 4.1.x
-  Not affected:       4.2+
-  Fixed Versions:     3.2.22.2, 4.1.14.2
-  Impact
-  ------
-  Applications that pass unverified user input to the `render` method in a
-  controller may be vulnerable to an information leak vulnerability.
-  Impacted code will look something like this:
-  ```ruby
-  def index
-    render params[:id]
-  end
-  ```
-  Carefully crafted requests can cause the above code to render files from
-  unexpected places like outside the application's view directory, and can
-  possibly escalate this to a remote code execution attack.
-  All users running an affected release should either upgrade or use one of the
-  workarounds immediately.
-  Releases
-  --------
-  The FIXED releases are available at the normal locations.
-  Workarounds
-  -----------
-  A workaround to this issue is to not pass arbitrary user input to the `render`
-  method. Instead, verify that data before passing it to the `render` method.
-  For example, change this:
-  ```ruby
-  def index
-    render params[:id]
-  end
-  ```
-  To this:
-  ```ruby
-  def index
-    render verify_template(params[:id])
-  end
-  private
-  def verify_template(name)
-    # add verification logic particular to your application here
-  end
-  ```
-  Patches
-  -------
-  To aid users who aren't able to upgrade immediately we have provided patches
-  for it. It is in git-am format and consist of a single changeset.
-  * 3-2-render_data_leak_2.patch - Patch for 3.2 series
-  * 4-1-render_data_leak_2.patch - Patch for 4.1 series
-  Credits
-  -------
-  Thanks to both Jyoti Singh and Tobias Kraze from makandra for reporting this
-  and working with us in the patch!
-unaffected_versions:
-  # Newer versions are affected, but tracked in the actionview gem.
-  - ">= 4.1.0"
-patched_versions:
-  - "~> 3.2.22.2"
-  - "~> 4.1.14, >= 4.1.14.2"

data/data/ruby-advisory-db/gems/actionpack/CVE-2016-2098.yml DELETED Viewed

@@ -1,89 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2016-2098
-date: 2016-02-29
-url: "https://groups.google.com/forum/#!topic/rubyonrails-security/ly-IH-fxr_Q"
-title: Possible remote code execution vulnerability in Action Pack
-description: |
-  There is a possible remote code execution vulnerability in Action Pack.
-  This vulnerability has been assigned the CVE identifier CVE-2016-2098.
-  Versions Affected:  3.2.x, 4.0.x, 4.1.x, 4.2.x
-  Not affected:       5.0+
-  Fixed Versions:     3.2.22.2, 4.1.14.2, 4.2.5.2
-  Impact
-  ------
-  Applications that pass unverified user input to the `render` method in a
-  controller or a view may be vulnerable to a code injection.
-  Impacted code will look like this:
-  ```ruby
-  class TestController < ApplicationController
-    def show
-      render params[:id]
-    end
-  end
-  ```
-  An attacker could use the request parameters to coerce the above example
-  to execute arbitrary ruby code.
-  All users running an affected release should either upgrade or use one of
-  the workarounds immediately.
-  Releases
-  --------
-  The FIXED releases are available at the normal locations.
-  Workarounds
-  -----------
-  A workaround to this issue is to not pass arbitrary user input to the `render`
-  method. Instead, verify that data before passing it to the `render` method.
-  For example, change this:
-  ```ruby
-  def index
-    render params[:id]
-  end
-  ```
-  To this:
-  ```ruby
-  def index
-    render verify_template(params[:id])
-  end
-  private
-  def verify_template(name)
-    # add verification logic particular to your application here
-  end
-  ```
-  Patches
-  -------
-  To aid users who aren't able to upgrade immediately we have provided a
-  patch for it. It is in git-am format and consist of a single changeset.
-  * 3-2-secure_inline_with_params.patch - Patch for 3.2 series
-  * 4-1-secure_inline_with_params.patch - Patch for 4.1 series
-  * 4-2-secure_inline_with_params.patch - Patch for 4.2 series
-  Credits
-  -------
-  Thanks to both Tobias Kraze from makandra and joernchen of Phenoelit for
-  reporting this!
-unaffected_versions:
-  - ">= 5.0.0.beta1"
-patched_versions:
-  - "~> 3.2.22.2"
-  - "~> 4.2.5, >= 4.2.5.2"
-  - "~> 4.1.14, >= 4.1.14.2"

data/data/ruby-advisory-db/gems/actionpack/CVE-2016-6316.yml DELETED Viewed

@@ -1,57 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2016-6316
-date: 2016-08-11
-url: https://groups.google.com/forum/#!topic/rubyonrails-security/I-VWr034ouk
-title: Possible XSS Vulnerability in Action View
-description: |
-  There is a possible XSS vulnerability in Action View.  Text declared as "HTML
-  safe" will not have quotes escaped when used as attribute values in tag
-  helpers.
-  Impact
-  ------
-  Text declared as "HTML safe" when passed as an attribute value to a tag helper
-  will not have quotes escaped which can lead to an XSS attack.  Impacted code
-  looks something like this:
-  ```ruby
-  content_tag(:div, "hi", title: user_input.html_safe)
-  ```
-  Some helpers like the `sanitize` helper will automatically mark strings as
-  "HTML safe", so impacted code could also look something like this:
-  ```ruby
-  content_tag(:div, "hi", title: sanitize(user_input))
-  ```
-  All users running an affected release should either upgrade or use one of the
-  workarounds immediately.
-  Workarounds
-  -----------
-  You can work around this issue by either *not* marking arbitrary user input as
-  safe, or by manually escaping quotes like this:
-  ```ruby
-  def escape_quotes(value)
-    value.gsub(/"/, '&quot;'.freeze)
-  end
-  content_tag(:div, "hi", title: escape_quotes(sanitize(user_input)))
-  ```
-unaffected_versions:
-  - "< 3.0.0"
-  # Newer versions are affected, but tracked in the actionview gem.
-  - ">= 4.1.0"
-patched_versions:
-  - ~> 3.2.22.3
-  - ~> 4.2.7.1
-  - ">= 5.0.0.1"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-100524.yml DELETED Viewed

@@ -1,20 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2013-6415
-osvdb: 100524
-url: https://groups.google.com/forum/#!topic/ruby-security-ann/9WiRn2nhfq0
-title: XSS Vulnerability in number_to_currency
-date: 2013-12-03
-description: |
-  There is an XSS vulnerability in the number_to_currency helper in Ruby on Raile.
-  The number_to_currency helper allows users to nicely format a numeric value. One
-  of the parameters to the helper (unit) is not escaped correctly.  Applications
-  which pass user controlled data as the unit parameter are vulnerable to an XSS attack.
-cvss_v2: 4.3
-patched_versions:
-  - ~> 3.2.16
-  - ">= 4.0.2"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-100525.yml DELETED Viewed

@@ -1,21 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2013-6414
-osvdb: 100525
-url: https://groups.google.com/forum/#!topic/ruby-security-ann/A-ebV4WxzKg
-title: Denial of Service Vulnerability in Action View
-date: 2013-12-03
-description: |
-  There is a denial of service vulnerability in the header handling component of
-  Action View.
-cvss_v2: 5.0
-unaffected_versions:
-  - ~> 2.3.0
-patched_versions:
-  - ~> 3.2.16
-  - ">= 4.0.2"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-100526.yml DELETED Viewed

@@ -1,27 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2013-6416
-osvdb: 100526
-url: https://groups.google.com/forum/#!topic/ruby-security-ann/5ZI1-H5OoIM
-title: XSS Vulnerability in simple_format helper
-date: 2013-12-03
-description: |
-  There is a vulnerability in the simple_format helper in Ruby on Rails.
-  The simple_format helper converts user supplied text into html text
-  which is intended to be safe for display. A change made to the
-  implementation of this helper means that any user provided HTML
-  attributes will not be escaped correctly. As a result of this error,
-  applications which pass user-controlled data to be included as html
-  attributes will be vulnerable to an XSS attack.
-cvss_v2: 4.3
-unaffected_versions:
-  - ~> 2.3.0
-  - ~> 3.1.0
-  - ~> 3.2.0
-patched_versions:
-  - ">= 4.0.2"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-100527.yml DELETED Viewed

@@ -1,24 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2013-6417
-osvdb: 100527
-url: https://groups.google.com/forum/#!topic/ruby-security-ann/niK4drpSHT4
-title: Incomplete fix to CVE-2013-0155 (Unsafe Query Generation Risk)
-date: 2013-12-03
-description: |
-  The prior fix to CVE-2013-0155 was incomplete and the use of common
-  3rd party libraries can accidentally circumvent the protection. Due
-  to the way that Rack::Request and Rails::Request interact, it is
-  possible for a 3rd party or custom rack middleware to parse the
-  parameters insecurely and store them in the same key that Rails uses
-  for its own parameters.  In the event that happens the application
-  will receive unsafe parameters and could be vulnerable to the earlier
-  vulnerability.
-cvss_v2: 6.4
-patched_versions:
-  - ~> 3.2.16
-  - ">= 4.0.2"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-100528.yml DELETED Viewed

@@ -1,22 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2013-4491
-osvdb: 100528
-url: https://groups.google.com/forum/#!topic/ruby-security-ann/pLrh6DUw998
-title: Reflective XSS Vulnerability in Ruby on Rails
-date: 2013-12-03
-description: |
-  There is a vulnerability in the internationalization component of Ruby on
-  Rails. Under certain common configurations an attacker can provide specially
-  crafted input which will execute a reflective XSS attack.
-  The root cause of this issue is a vulnerability in the i18n gem which has
-  been assigned the identifier CVE-2013-4492.
-cvss_v2: 4.3
-patched_versions:
-  - ~> 3.2.16
-  - ">= 4.0.2"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-103439.yml DELETED Viewed

@@ -1,24 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2014-0081
-osvdb: 103439
-url: http://osvdb.org/show/osvdb/103439
-title: XSS Vulnerability in number_to_currency, number_to_percentage and number_to_human
-date: 2014-02-18
-description: |
-  Ruby on Rails contains a flaw that allows a cross-site scripting (XSS) attack.
-  This flaw exists because the actionpack/lib/action_view/helpers/number_helper.rb
-  script does not validate input to the 'number_to_currency', 'number_to_percentage',
-  and 'number_to_human' helpers before returning it to users. This may allow a
-  remote attacker to create a specially crafted request that would execute arbitrary
-  script code in a user's browser session within the trust relationship between
-  their browser and the server.
-cvss_v2: 4.3
-patched_versions:
-  - ~> 3.2.17
-  - ~> 4.0.3
-  - ">= 4.1.0.beta2"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-103440.yml DELETED Viewed

@@ -1,22 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2014-0082
-osvdb: 103440
-url: http://osvdb.org/show/osvdb/103440
-title: Denial of Service Vulnerability in Action View when using render :text
-date: 2014-02-18
-description: |
-  Ruby on Rails contains a flaw in actionpack/lib/action_view/template/text.rb
-  in the text rendering component of Action View that is triggered when
-  handling MIME types that are converted to symbols. This may allow a
-  remote attacker to cause a denial of service.
-cvss_v2: 5.0
-unaffected_versions:
-  - ~> 4.0.0
-patched_versions:
-  - ">= 3.2.17"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-74616.yml DELETED Viewed

@@ -1,18 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2011-3186
-osvdb: 74616
-url: https://groups.google.com/forum/#!topic/rubyonrails-security/b_yTveAph2g
-title: Response Splitting Vulnerability in Ruby on Rails
-date: 2011-08-16
-description: |
-  A response splitting flaw in Ruby on Rails 2.3.x was reported that could allow
-  a remote attacker to inject arbitrary HTTP headers into a response due to
-  insufficient sanitization of the values provided for response content types.
-cvss_v2: 4.3
-patched_versions:
-  - ">= 2.3.13"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-77199.yml DELETED Viewed

@@ -1,23 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2011-4319
-osvdb: 77199
-url: https://groups.google.com/forum/#!topic/rubyonrails-security/K2HXD7c8fMU
-title: XSS vulnerability in the translate helper method in Ruby on Rails
-date: 2011-11-17
-description: |
-  A cross-site scripting (XSS) flaw was found in the way the 'translate' helper
-  method of the Ruby on Rails performed HTML escaping of interpolated user
-  input, when interpolation in combination with HTML-safe translations were
-  used. A remote attacker could use this flaw to execute arbitrary HTML or web
-  script by providing a specially-crafted input to Ruby on Rails application,
-  using the ActionPack module and its 'translate' helper method without explicit
-  (application specific) sanitization of user provided input.
-cvss_v2: 4.3
-patched_versions:
-  - "~> 3.0.11"
-  - ">= 3.1.2"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-79727.yml DELETED Viewed

@@ -1,26 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2012-1099
-osvdb: 79727
-url: http://www.osvdb.org/show/osvdb/79727
-title:
-  Ruby on Rails actionpack/lib/action_view/helpers/form_options_helper.rb
-  Manually Generated Select Tag Options XSS
-date: 2012-03-01
-description: |
-  Ruby on Rails contains a flaw that allows a remote cross-site scripting (XSS)
-  attack. This flaw exists because the application does not validate manually
-  generated 'select tag options' upon submission to
-  actionpack/lib/action_view/helpers/form_options_helper.rb. This may allow a
-  user to create a specially crafted request that would execute arbitrary
-  script code in a user's browser within the trust relationship between their
-  browser and the server.
-cvss_v2: 4.3
-patched_versions:
-  - ~> 3.0.12
-  - ~> 3.1.4
-  - ">= 3.2.2"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-84243.yml DELETED Viewed

@@ -1,28 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2012-3424
-osvdb: 84243
-url: http://www.osvdb.org/show/osvdb/84243
-title:
-  Ruby on Rails actionpack/lib/action_controller/metal/http_authentication.rb
-  with_http_digest Helper Method Remote DoS
-date: 2012-07-26
-description: |
-  Ruby on Rails contains a flaw that may allow a remote denial of service.
-  The issue is triggered when an error occurs in
-  actionpack/lib/action_controller/metal/http_authentication.rb when the
-  with_http_digest helper method is being used. This may allow a remote
-  attacker to cause a loss of availability for the program.
-cvss_v2: 5.0
-unaffected_versions:
-  - ">= 2.3.5, <= 2.3.14"
-patched_versions:
-  - ~> 3.0.16
-  - ~> 3.1.7
-  - ">= 3.2.7"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-84513.yml DELETED Viewed

@@ -1,23 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2012-3465
-osvdb: 84513
-url: http://www.osvdb.org/show/osvdb/84513
-title: Ruby on Rails strip_tags Helper Method XSS
-date: 2012-08-09
-description: |
-  Ruby on Rails contains a flaw that allows a remote cross-site scripting (XSS)
-  attack. This flaw exists because the application does not validate input
-  passed via the 'strip_tags' helper method before returning it to the user.
-  This may allow a user to create a specially crafted request that would
-  execute arbitrary script code in a user's browser within the trust
-  relationship between their browser and the server.
-cvss_v2: 4.3
-patched_versions:
-  - ~> 3.0.17
-  - ~> 3.1.8
-  - ">= 3.2.8"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-84515.yml DELETED Viewed

@@ -1,26 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2012-3463
-osvdb: 84515
-url: http://osvdb.org/84515
-title: Ruby on Rails select_tag Helper Method prompt Value XSS
-date: 2012-08-09
-description: |
-  Ruby on Rails contains a flaw that allows a remote cross-site scripting (XSS)
-  attack. This flaw exists because input passed via the prompt value is not
-  properly sanitized by the select_tag helper method before returning it to
-  the user. This may allow a user to create a specially crafted request that
-  would execute arbitrary script code in a user's browser within the trust
-  relationship between their browser and the server.
-cvss_v2: 4.3
-unaffected_versions:
-  - ~> 2.3.0
-patched_versions:
-  - ~> 3.0.17
-  - ~> 3.1.8
-  - ">= 3.2.8"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-89026.yml DELETED Viewed

@@ -1,24 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2013-0156
-osvdb: 89026
-url: http://osvdb.org/show/osvdb/89026
-title:
-  Ruby on Rails params_parser.rb Action Pack Type Casting Parameter Parsing
-  Remote Code Execution
-date: 2013-01-08
-description: |
-  Ruby on Rails contains a flaw in params_parser.rb of the Action Pack.
-  The issue is triggered when a type casting error occurs during the parsing
-  of parameters. This may allow a remote attacker to potentially execute
-  arbitrary code.
-cvss_v2: 10.0
-patched_versions:
-  - ~> 2.3.15
-  - ~> 3.0.19
-  - ~> 3.1.10
-  - ">= 3.2.11"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-91452.yml DELETED Viewed

@@ -1,20 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2013-1855
-osvdb: 91452
-url: http://www.osvdb.org/show/osvdb/91452
-title: XSS vulnerability in sanitize_css in Action Pack
-date: 2013-03-19
-description: |
-  There is an XSS vulnerability in the `sanitize_css` method in Action
-  Pack. Carefully crafted text can bypass the sanitization provided in
-  the `sanitize_css` method in Action Pack
-cvss_v2: 4.3
-patched_versions:
-  - ~> 2.3.18
-  - ~> 3.1.12
-  - ">= 3.2.13"

data/data/ruby-advisory-db/gems/actionpack/OSVDB-91454.yml DELETED Viewed

@@ -1,23 +0,0 @@
----
-gem: actionpack
-framework: rails
-cve: 2013-1857
-osvdb: 91454
-url: http://osvdb.org/show/osvdb/91454
-title: XSS Vulnerability in the `sanitize` helper of Ruby on Rails
-date: 2013-03-19
-description: |
-  The sanitize helper in Ruby on Rails is designed to
-  filter HTML and remove all tags and attributes which could be
-  malicious. The code which ensured that URLs only contain supported
-  protocols contained several bugs which could allow an attacker to
-  embed a tag containing a URL which executes arbitrary javascript
-  code.
-cvss_v2: 4.3
-patched_versions:
-  - ~> 2.3.18
-  - ~> 3.1.12
-  - ">= 3.2.13"