sentry-raven 0.4.8
1 security vulnerability
found in version
0.4.8
sentry-raven Gem for Ruby contains a flaw that can result in a denial of service
medium severity CVE-2014-9490
medium severity
CVE-2014-9490
Patched versions:
>= 0.12.2
Sentry raven-ruby contains a flaw in the lib/raven/okjson.rb script that is triggered when large numeric values are stored as an exponent or in scientific notation. With a specially crafted request, an attacker can cause the software to consume excessive resources resulting in a denial of service.
No officially reported memory leakage issues detected.
This gem version does not have any officially reported memory leaked issues.
Author did not declare license for this gem in the gemspec.
This gem version has a Apache-2.0 license in the source code, however it was not declared in the gemspec file.
This gem version is available.
This gem version has not been yanked and is still available for usage.