codesake-dawn 1.1.0.rc1 → 1.1.0.rc2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: e6f5635154af886b9fe241f81237d26881b8d355
-  data.tar.gz: 4876b2d24472a2ed3e593433b0cfde0e0eb41242
+  metadata.gz: b45bb6703fbdd7c1adc81a3b6289b44c02804ddc
+  data.tar.gz: 8ba2c9dab525a8c1c1c036283d1d94ea115a76eb
 SHA512:
-  metadata.gz: 9196f5452bc7611b064b2d2f9cd08e301495b91c15531272d9edba5ec98428f7578c98916499c8844c65e1eb2f727574a9eca50160f9bda93e67fbad1914e84a
-  data.tar.gz: e7128f118a790d48eb7139d7ce429cf28de1fcca516397ced49bc621e295c3ccc4d0e37bc58d64f2522abcb5ed85e89136749b360e3cf6eeba4ef372662cc2e5
+  metadata.gz: 815e5aeef96ebbbc166cddba61e3495ed87c4293f035518be5aa7e69e2e1e14e40ca338c8f5ed06a003bd16b99ad2fd9c17fe023c04facfa2275d286c82d93ab
+  data.tar.gz: 8aad05efc5b55b5a21fb094a28138bd7d586de4e332fbb6556767787fd08e27478e8535f5257b10e8af13013beeb2ef8c78b93e22fb04a98ecfcce08a94cb6ef

data/Changelog.md

@@ -18,6 +18,7 @@ _latest update: Sun Mar 23 23:06:38 CET 2014_
 * Added a check for CVE-2013-2512
 * Added a check for CVE-2013-2513
 * Added a check for CVE-2013-2516
+* Added a check for CVE-2013-4203
 * Added a check for CVE-2013-4413
 * Added a check for CVE-2013-4489
 * Added a check for CVE-2013-4593
@@ -52,8 +53,10 @@ _latest update: Sun Mar 23 23:06:38 CET 2014_
   or just old. I enabled only check against ruby
 * Added a --seach-knowledge-base removing the optional parameter to
   --list-knowledge-base that is just for listing.
-* Renamed '--list-knowledgebase' to '--list-knowledge-base' and '-k' short option was removed
-* Added a --list-known-families option printing out Codesake::Dawn supported check family name
+* Renamed '--list-knowledgebase' to '--list-knowledge-base' and '-k' short
+  option was removed
+* Added a --list-known-families option printing out Codesake::Dawn supported
+  check family name
 * Removed '-f' short option for list-known-framework
 * Added family and severity to Owasp RoR Cheatsheet files
 * Add a method to return severity level. If it's provided by check constructor
@@ -72,6 +75,8 @@ _latest update: Sun Mar 23 23:06:38 CET 2014_
   preferences in a .codesake-dawn.yaml file in your home directory (or you can
   use the --config-file option to specify the file you want to use). It returns
   an embedded default configuration if the supplied filename doesn't exist.
+* Nokogiri DoS security checks discovered in December 2013, now have their own
+  CVE: CVE-2013-6460 and CVE-2013-6461
 
 ## Version 1.0.6 - codename: Lightning McQueen (2014-03-23)
 

data/README.md

@@ -20,29 +20,11 @@ MVC (Model View Controller) frameworks, like:
 
 ---
 
-Codesake::Dawn version 1.0 has 142 security checks loaded in its knowledge
-base. Most of them are CVE bulletins, that applies to gems, framework or the
-ruby interpreter itself.
+Codesake::Dawn version 1.1 has 169 security checks loaded in its knowledge
+base. Most of them are CVE bulletins applying to gems or the ruby interpreter
+itself. There are also some check coming from Owasp Ruby on Rails cheatsheet.
 
-You can dump all security checks in the knowledge base by using the -k
-flag:
-
-```
-$ dawn -k|--list-knowledge-base
-```
-
-Useful in scripts, you can even supply a parameter to ```-k``` flag to check if
-a security control has been implemented or not.
-
-```
-$ dawn -k CVE-2013-6421
-07:59:30 [*] dawn v1.0.0 is starting up
-CVE-2013-6421 found in knowledgebase.
-
-$ dawn -k this_test_does_not_exist
-08:02:17 [*] dawn v1.0.0 is starting up
-this_test_does_not_exist not found in knowledgebase
-```
+## An overall introduction
 
 When you run Codesake::Dawn on your code it parses your project Gemfile.lock
 looking for the gems used and it tries to detect the ruby interpreter version
@@ -192,6 +174,28 @@ rake dawn:run                  # Execute codesake-dawn on the current directory
 ...
 ```
 
+### Interacting with the knowledge base
+
+You can dump all security checks in the knowledge base this way
+
+```
+$ dawn --list-knowledge-base
+```
+
+Useful in scripts, you can use ```--search-knowledge-base``` or ```-S``` with
+as parameter the check name you want to see if it's implemented as a security
+control or not.
+
+```
+$ dawn -S CVE-2013-6421
+07:59:30 [*] dawn v1.1.0 is starting up
+CVE-2013-6421 found in knowledgebase.
+
+$ dawn -S this_test_does_not_exist
+08:02:17 [*] dawn v1.1.0 is starting up
+this_test_does_not_exist not found in knowledgebase
+```
+
 ### Codesake::Dawn security scan in action
 
 As output, Codesake::Dawn will put all security checks that are failed during the scan.
@@ -271,17 +275,15 @@ Mailing list: [https://groups.google.com/forum/#!forum/codesake-dawn](https://gr
 
 ## Supporters
 
-To me as project leader it's very important to have feedbacks.
+Feedbacks are great and we really love to hear your voice.
 
 If you're a proud codesake-dawn user, if you find it useful, if you integrated
 it in your release process and if you want to openly support the project you
-can put your reference here.
-
-You can support the project by forking the repo, adding a success story, a
-statement saying how do you feel the tool or your company logo as well and then
-submitting a pull request.
+can put your reference here. Just open an
+[issue](https://github.com/codesake-dawn/issues/new) with a statement saying
+how do you feel the tool and your company logo if any.
 
-More easily you can drop an email to [me](mailto:thesp0nge@gmail.com) sending a
+More easily you can drop an email to [paolo@codesake.com](mailto:paolo@codesake.com) sending a
 statement about your success story and I'll put on the
 [website](http://dawn.codesake.com/success-stories).
 

data/Rakefile

@@ -24,13 +24,19 @@ task :test => :spec
 task :prepare => [:build, :'checksum:calculate', :'checksum:commit']
 task :release => [:prepare]
 
+# namespace :check do
+# desc "Create a dependency check"
+# task :dependency, :name do |t, args|
+# end
+
+# end
 desc "Create a new CVE test"
 task :cve, :name do |t,args|
   name      = args.name
   SRC_DIR   = "./lib/codesake/dawn/kb/"
   SPEC_DIR  = "./spec/lib/kb/"
 
-  raise "### It seems that #{name} is already in Dawn knowledge base" unless Codesake::Dawn::KnowledgeBase.find(nil, name).nil?
+  raise "### It seems that #{name} is already in Dawn knowledge base" unless Codesake::Dawn::KnowledgeBase.new.find(nil, name).nil?
   raise "### Invalid CVE title: #{name}" if name.nil? or name.empty? or /CVE-\d{4}-\d{4}/.match(name).nil?
   raise "### No target directory: #{SRC_DIR}" unless Dir.exists?(SRC_DIR)
   raise "### No rspec directory: #{SPEC_DIR}" unless Dir.exists?(SPEC_DIR)
@@ -189,3 +195,45 @@ task :commit do
   system "git commit -v #{checksum_path} -m \"Adding #{Codesake::Dawn::VERSION} checksum to repo\""
 end
 end
+
+###############################################################################
+# ruby-advisory-rb integration
+###############################################################################
+
+namespace :rubysec do
+  desc 'Find new CVE bulletins to add to Codesake::Dawn'
+  task :find do
+    git_url = 'git@github.com:rubysec/ruby-advisory-db.git'
+    target_dir = './tmp/'
+    system "mkdir -p #{target_dir}"
+    system "rm -rf #{target_dir}ruby-advisory-db"
+    system "git clone #{git_url} #{target_dir}ruby-advisory-db"
+    list = []
+    Dir.glob("#{target_dir}ruby-advisory-db/gems/*/*.yml") do |path|
+      advisory = YAML.load_file(path)
+      if advisory['cve']
+        cve = "CVE-"+advisory['cve']
+        # Exclusion
+        # CVE-2007-6183 is a vulnerability in gnome2 ruby binding. Not a gem, I don't care
+        # CVE-2013-1878 is a duplicate of CVE-2013-2617 that is in knowledge base
+        # CVE-2013-1876 is a duplicate of CVE-2013-2615 that is in knowledge base
+        exclusion = ["CVE-2007-6183", "CVE-2013-1876", "CVE-2013-1878"]
+        if exclusion.include?(cve) 
+          puts "#{cve} is in the exclusion list"
+        else
+          found = Codesake::Dawn::KnowledgeBase.find(nil, cve)
+          puts "#{cve} NOT in dawn v#{Codesake::Dawn::VERSION} knowledge base" unless found
+          list << cve unless found
+        end
+      end
+    end
+    unless list.empty?
+      File.open("missing_rubyadvisory_cvs_#{Time.now.strftime("%Y%m%d")}.txt", "w") do |f|
+        f.puts "Missing CVE bulletins - v#{Codesake::Dawn::VERSION} - #{Time.now.strftime("%d %B %Y")}"
+        f.puts list
+      end
+    end
+    system "rm -rf #{target_dir}ruby-advisory-db"
+
+  end
+end

data/bin/dawn

@@ -129,7 +129,7 @@ opts.each do |opt, val|
     Kernel.exit(0)
 
   when '--list-knowledge-base'
-    puts Codesake::Dawn::Core.dump_knowledge_base(options[:verbose]) 
+    puts Codesake::Dawn::Core.dump_knowledge_base(options[:verbose])
     Kernel.exit(0)
   when '--list-known-framework'
     puts "Ruby MVC framework supported by #{APPNAME}:"

data/checksum/codesake-dawn-1.1.0.rc1.gem.sha512

@@ -0,0 +1 @@
+4b4c2cef33f0631d3c33eb70112bc87e30651e448733697542a643614ebe8df8cd4e42ee1a9eb043029f0b51a6fd1353ed4c7965d053e5bb8509bf3cfff772e0

data/lib/codesake/dawn/kb/basic_check.rb

@@ -118,6 +118,7 @@ module Codesake
           @check_family = :cve if !options[:name].nil? && options[:name].start_with?('CVE-')
 
           if $logger.nil?
+            require 'codesake-commons'
             $logger  = Codesake::Commons::Logging.instance
             $logger.helo "dawn-basic-check", Codesake::Dawn::VERSION
           end

data/lib/codesake/dawn/kb/cve_2013_4203.rb

@@ -0,0 +1,27 @@
+module Codesake
+	module Dawn
+		module Kb
+			# Automatically created with rake on 2014-03-28
+			class CVE_2013_4203
+				include DependencyCheck
+
+				def initialize
+          message = "The self.run_gpg function in lib/rgpg/gpg_helper.rb in the rgpg gem before 0.2.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified vectors."
+           super({
+            :name=>"CVE-2013-4203",
+            :cvss=>"AV:N/AC:L/Au:N/C:P/I:P/A:P",
+            :release_date => Date.new(2013, 10, 11),
+            :cwe=>"94",
+            :owasp=>"A9",
+            :applies=>["rails", "sinatra", "padrino"],
+            :kind=>Codesake::Dawn::KnowledgeBase::DEPENDENCY_CHECK,
+            :message=>message,
+            :mitigation=>"Please upgrade rgpg at least to version 0.2.3. As a general rule, using the latest stable rails version is recommended.",
+            :aux_links=>["http://www.openwall.com/lists/oss-security/2013/08/03/2"]
+           })
+           self.safe_dependencies = [{:name=>"rgpg", :version=>['0.2.3']}]
+				end
+			end
+		end
+	end
+end

data/lib/codesake/dawn/kb/{nokogiri_dos_20131217.rb → cve_2013_6460.rb}

@@ -2,13 +2,13 @@ module Codesake
 	module Dawn
 		module Kb
 
-      class NokogiriDos20131217_a
+      class CVE_2013_6460_a
         include DependencyCheck
 
         def initialize
           message = "Vulnerability arises when Nokogiri version 1.6.0 and 1.5.x (x<11) is used"
           super({
-            :name=>"NokogiriDos20131217_a",
+            :name=>"CVE_2013_6460_a",
             :kind=>Codesake::Dawn::KnowledgeBase::DEPENDENCY_CHECK,
           })
           self.safe_dependencies = [{:name=>"nokogiri", :version=>['1.6.1', '1.5.11']}]
@@ -16,12 +16,12 @@ module Codesake
 
       end
 
-      class NokogiriDos20131217_b
+      class CVE_2013_6460_b
         include RubyVersionCheck
         def initialize
           message = "Vulnerability arises when Nokogiri version 1.6.0 and 1.5.x (x<11) is used with JRuby"
           super({
-            :name=>"NokogiriDos20131217_b",
+            :name=>"CVE_2013_6460_b",
             :kind=>Codesake::Dawn::KnowledgeBase::RUBY_VERSION_CHECK,
           })
           self.safe_rubies = [ {:engine=>"jruby", :version=>"99.99.99", :patchlevel=>"p999"}]
@@ -29,15 +29,15 @@ module Codesake
         end
       end
 
-			class NokogiriDos20131217
+			class CVE_2013_6460
         include ComboCheck
 
 				def initialize
           message = "There is a vulnerability in Nokogiri when using JRuby where the parser can enter an infinite loop and exhaust the process memory. Nokogiri users on JRuby using the native Java extension.  Attackers can send XML documents with carefully crafted documents which can cause the XML processor to enter an infinite loop, causing the server to run out of memory and crash."
 
           super({
-            :name=>"Nokogiri - Denial of service - 20131217",
-            :cvss=>"",
+            :name=>"CVE-2013-6460",
+            :cvss=>"AV:N/AC:M/Au:N/C:N/I:N/A:P",
             :release_date => Date.new(2013, 12, 15),
             :cwe=>"",
             :owasp=>"A9", 
@@ -45,12 +45,9 @@ module Codesake
             :kind=>Codesake::Dawn::KnowledgeBase::COMBO_CHECK,
             :message=>message,
             :mitigation=>"Please upgrade nokogiri gem to a newer version",
-            :aux_links=>["https://groups.google.com/forum/#!topic/ruby-security-ann/DeJpjTAg1FA"],
-            :checks=>[NokogiriDos20131217_a.new, NokogiriDos20131217_b.new]
+            :aux_links=>["https://groups.google.com/forum/#!topic/ruby-security-ann/DeJpjTAg1FA", "https://access.redhat.com/security/cve/CVE-2013-6460"],
+            :checks=>[CVE_2013_6460_a.new, CVE_2013_6460_b.new]
           })
-
-
-          
 				end
 			end
 		end

data/lib/codesake/dawn/kb/{nokogiri_entityexpansion_dos_20131217.rb → cve_2013_6461.rb}

@@ -2,13 +2,13 @@ module Codesake
 	module Dawn
 		module Kb
 
-      class Nokogiri_EntityExpansion_Dos_20131217_a
+      class CVE_2013_6461_a
         include DependencyCheck
 
         def initialize
           message = "Vulnerability arises when Nokogiri version 1.6.0 and 1.5.x (x<11) is used"
           super({
-            :name=>"Nokogiri_EntityExpansion_Dos_20131217_a",
+            :name=>"CVE_2013_6461_a",
             :kind=>Codesake::Dawn::KnowledgeBase::DEPENDENCY_CHECK,
           })
           self.safe_dependencies = [{:name=>"nokogiri", :version=>['1.6.1', '1.5.11']}]
@@ -16,27 +16,27 @@ module Codesake
 
       end
 
-      class Nokogiri_EntityExpansion_Dos_20131217_b
+      class CVE_2013_6461_b
         include RubyVersionCheck
         def initialize
           message = "Vulnerability arises when Nokogiri version 1.6.0 and 1.5.x (x<11) is used with JRuby"
           super({
-            :name=>"Nokogiri_EntityExpansion_Dos_20131217_b",
+            :name=>"CVE_2013_6461_b",
             :kind=>Codesake::Dawn::KnowledgeBase::RUBY_VERSION_CHECK,
           })
           self.safe_rubies = [ {:engine=>"jruby", :version=>"99.99.99", :patchlevel=>"p999"}]
         end
       end
 
-			class Nokogiri_EntityExpansion_Dos_20131217
+			class CVE_2013_6461
         include ComboCheck
 
 				def initialize
           message = "There is an entity expansion vulnerability in Nokogiri when using JRuby. Nokogiri users on JRuby using the native Java extension.  Attackers can send
 XML documents with carefully crafted entity expansion strings which can cause the server to run out of memory and crash."
           super({
-            :name=>"Nokogiri - Entity expasion denial of service - 20131217",
-            :cvss=>"",
+            :name=>"CVE-2013-6461",
+            :cvss=>"AV:N/AC:M/Au:N/C:N/I:N/A:P",
             :release_date => Date.new(2013, 12, 15),
             :cwe=>"",
             :owasp=>"A9", 
@@ -45,7 +45,7 @@ XML documents with carefully crafted entity expansion strings which can cause th
             :message=>message,
             :mitigation=>"Please upgrade nokogiri gem to a newer version",
             :aux_links=>["https://groups.google.com/forum/#!topic/ruby-security-ann/DeJpjTAg1FA"],
-            :checks=>[Nokogiri_EntityExpansion_Dos_20131217_a.new, Nokogiri_EntityExpansion_Dos_20131217_b.new]
+            :checks=>[CVE_2013_6461_a.new, CVE_2013_6461_b.new]
           })
 
 

data/lib/codesake/dawn/knowledge_base.rb

@@ -31,13 +31,6 @@ require 'codesake/dawn/kb/owasp_ror_cheatsheet/sensitive_files'
 # https://groups.google.com/forum/#!topic/ruby-security-ann/flHbLMb07tE
 require "codesake/dawn/kb/simpleform_xss_20131129"
 
-# Two different denial of service issues affecting Nokogiri gem when using Jruby interpreter
-# December, 17 2013
-#
-# https://groups.google.com/forum/#!topic/ruby-security-ann/DeJpjTAg1FA
-require "codesake/dawn/kb/nokogiri_dos_20131217"
-require "codesake/dawn/kb/nokogiri_entityexpansion_dos_20131217"
-
 # CVE - 2004
 require "codesake/dawn/kb/cve_2004_0755"
 require "codesake/dawn/kb/cve_2004_0983"
@@ -189,6 +182,7 @@ require "codesake/dawn/kb/cve_2013_2616"
 require "codesake/dawn/kb/cve_2013_2617"
 require "codesake/dawn/kb/cve_2013_3221"
 require "codesake/dawn/kb/cve_2013_4164"
+require "codesake/dawn/kb/cve_2013_4203"
 require "codesake/dawn/kb/cve_2013_4389"
 require "codesake/dawn/kb/cve_2013_4413"
 require "codesake/dawn/kb/cve_2013_4457"
@@ -207,6 +201,8 @@ require "codesake/dawn/kb/cve_2013_6416"
 require "codesake/dawn/kb/cve_2013_6417"
 require "codesake/dawn/kb/cve_2013_6421"
 require "codesake/dawn/kb/cve_2013_6459"
+require "codesake/dawn/kb/cve_2013_6460"
+require "codesake/dawn/kb/cve_2013_6461"
 require "codesake/dawn/kb/cve_2013_7086"
 
 # CVE - 2014
@@ -425,6 +421,7 @@ module Codesake
           Codesake::Dawn::Kb::CVE_2013_2617.new, 
           Codesake::Dawn::Kb::CVE_2013_3221.new, 
           Codesake::Dawn::Kb::CVE_2013_4164.new, 
+          Codesake::Dawn::Kb::CVE_2013_4203.new, 
           Codesake::Dawn::Kb::CVE_2013_4389.new, 
           Codesake::Dawn::Kb::CVE_2013_4413.new,
           Codesake::Dawn::Kb::CVE_2013_4457.new,
@@ -443,6 +440,8 @@ module Codesake
           Codesake::Dawn::Kb::CVE_2013_6417.new, 
           Codesake::Dawn::Kb::CVE_2013_6421.new, 
           Codesake::Dawn::Kb::CVE_2013_6459.new, 
+          Codesake::Dawn::Kb::CVE_2013_6460.new,
+          Codesake::Dawn::Kb::CVE_2013_6461.new,
           Codesake::Dawn::Kb::CVE_2013_7086.new, 
           Codesake::Dawn::Kb::CVE_2014_0036.new, 
           Codesake::Dawn::Kb::CVE_2014_0080.new, 
@@ -471,8 +470,6 @@ module Codesake
         @aux_checks =
         [
           Codesake::Dawn::Kb::SimpleForm_Xss_20131129.new,
-          Codesake::Dawn::Kb::NokogiriDos20131217.new,
-          Codesake::Dawn::Kb::Nokogiri_EntityExpansion_Dos_20131217.new,
         ]
 
         ret = []

data/lib/codesake/dawn/version.rb

@@ -17,11 +17,12 @@ module Codesake
     # |"Holly Shiftwell"|  5.0.0  |
     # |   "Guido"       |  6.0.0  |
     # |   "Luigi"       |  7.0.0  |
+    # | "Doc Hudson"    |  8.0.0  |
 
-    VERSION   = "1.1.0.rc1"
+    VERSION   = "1.1.0.rc2"
     CODENAME  = "Lightning McQueen"
     #RELEASE   = "(development)"
-    RELEASE   = "20140326"
+    RELEASE   = "20140328"
 
   end
 end

data/spec/lib/dawn/codesake_knowledgebase_spec.rb

@@ -427,15 +427,15 @@ describe "The Codesake Dawn knowledge base" do
     sc.class.should == Codesake::Dawn::Kb::CVE_2013_6417
   end
 
-  it "must have test for NokogiriDos20131217_1" do
-    sc = kb.find("Nokogiri - Denial of service - 20131217")
+  it "must have test for CVE-2013-6460" do
+    sc = kb.find("CVE-2013-6460")
     sc.should_not   be_nil
-    sc.class.should == Codesake::Dawn::Kb::NokogiriDos20131217
+    sc.class.should == Codesake::Dawn::Kb::CVE_2013_6460
   end
-  it "must have test for Nokogiri_EntityExpansion_Dos_20131217" do
-    sc = kb.find("Nokogiri - Entity expasion denial of service - 20131217")
+  it "must have test for CVE-2013-6461" do
+    sc = kb.find("CVE-2013-6461")
     sc.should_not   be_nil
-    sc.class.should == Codesake::Dawn::Kb::Nokogiri_EntityExpansion_Dos_20131217
+    sc.class.should == Codesake::Dawn::Kb::CVE_2013_6461
   end
   it "must have test for CVE-2013-4478" do
     sc = kb.find("CVE-2013-4478")
@@ -877,4 +877,9 @@ end
         sc.should_not   be_nil
           sc.class.should == Codesake::Dawn::Kb::CVE_2014_2538
   end
+  it "must have test for CVE-2013-4203" do
+      sc = kb.find("CVE-2013-4203")
+        sc.should_not   be_nil
+          sc.class.should == Codesake::Dawn::Kb::CVE_2013_4203
+  end
 end

data/spec/lib/kb/cve_2013_4203_spec.rb

@@ -0,0 +1,15 @@
+require 'spec_helper'
+describe "The CVE-2013-4203 vulnerability" do
+	before(:all) do
+		@check = Codesake::Dawn::Kb::CVE_2013_4203.new
+		# @check.debug = true
+	end
+  it "is reported when a vulnerable rgpg version is detected (0.2.2)" do
+    @check.dependencies = [{:name=>"rgpg", :version=>"0.2.2"}]
+    @check.vuln?.should   be_true
+  end
+  it "is not reported when a safe rgpg version is detected (0.2.3)" do
+    @check.dependencies = [{:name=>"rgpg", :version=>"0.2.3"}]
+    @check.vuln?.should   be_false
+  end
+end

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: codesake-dawn
 version: !ruby/object:Gem::Version
-  version: 1.1.0.rc1
+  version: 1.1.0.rc2
 platform: ruby
 authors:
 - Paolo Perego
@@ -30,7 +30,7 @@ cert_chain:
   Fh7BfxFDBZdj1mI2V+I+IYYMPKIouvwX3r7NTZgZ4TYuKVpOk9VSCxzhrPhnl4kb
   1LyVQIFlhF6nL0casp0ixer8N60=
   -----END CERTIFICATE-----
-date: 2014-03-27 00:00:00.000000000 Z
+date: 2014-03-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: codesake-commons
@@ -282,6 +282,7 @@ files:
 - bin/dawn
 - certs/paolo_at_codesake_dot_com.pem
 - checksum/.placeholder
+- checksum/codesake-dawn-1.1.0.rc1.gem.sha512
 - codesake-dawn.gemspec
 - doc/codesake-dawn.yaml.sample
 - doc/dawn_1_0_announcement.md
@@ -427,6 +428,7 @@ files:
 - lib/codesake/dawn/kb/cve_2013_2617.rb
 - lib/codesake/dawn/kb/cve_2013_3221.rb
 - lib/codesake/dawn/kb/cve_2013_4164.rb
+- lib/codesake/dawn/kb/cve_2013_4203.rb
 - lib/codesake/dawn/kb/cve_2013_4389.rb
 - lib/codesake/dawn/kb/cve_2013_4413.rb
 - lib/codesake/dawn/kb/cve_2013_4457.rb
@@ -445,6 +447,8 @@ files:
 - lib/codesake/dawn/kb/cve_2013_6417.rb
 - lib/codesake/dawn/kb/cve_2013_6421.rb
 - lib/codesake/dawn/kb/cve_2013_6459.rb
+- lib/codesake/dawn/kb/cve_2013_6460.rb
+- lib/codesake/dawn/kb/cve_2013_6461.rb
 - lib/codesake/dawn/kb/cve_2013_7086.rb
 - lib/codesake/dawn/kb/cve_2014_0036.rb
 - lib/codesake/dawn/kb/cve_2014_0080.rb
@@ -456,8 +460,6 @@ files:
 - lib/codesake/dawn/kb/cve_2014_2538.rb
 - lib/codesake/dawn/kb/dependency_check.rb
 - lib/codesake/dawn/kb/deprecation_check.rb
-- lib/codesake/dawn/kb/nokogiri_dos_20131217.rb
-- lib/codesake/dawn/kb/nokogiri_entityexpansion_dos_20131217.rb
 - lib/codesake/dawn/kb/not_revised_code.rb
 - lib/codesake/dawn/kb/operating_system_check.rb
 - lib/codesake/dawn/kb/owasp_ror_cheatsheet.rb
@@ -517,6 +519,7 @@ files:
 - spec/lib/kb/cve_2013_2512_spec.rb
 - spec/lib/kb/cve_2013_2513_spec.rb
 - spec/lib/kb/cve_2013_2516_spec.rb
+- spec/lib/kb/cve_2013_4203_spec.rb
 - spec/lib/kb/cve_2013_4413_spec.rb
 - spec/lib/kb/cve_2013_4489_spec.rb
 - spec/lib/kb/cve_2013_4593_spec.rb
@@ -605,6 +608,7 @@ test_files:
 - spec/lib/kb/cve_2013_2512_spec.rb
 - spec/lib/kb/cve_2013_2513_spec.rb
 - spec/lib/kb/cve_2013_2516_spec.rb
+- spec/lib/kb/cve_2013_4203_spec.rb
 - spec/lib/kb/cve_2013_4413_spec.rb
 - spec/lib/kb/cve_2013_4489_spec.rb
 - spec/lib/kb/cve_2013_4593_spec.rb