rubygem-rails -- multiple vulnerabilities

2015-06-1600:00:00

vuxml.freebsd.org

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.929 High

EPSS

Percentile

99.0%

JSON

Ruby on Rails blog:

Rails 3.2.22, 4.1.11 and 4.2.2 have been released, along with web
console and jquery-rails plugins and Rack 1.5.4 and 1.6.2.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchrubygem-activesupport< 3.2.22UNKNOWN
FreeBSDanynoarchrubygem-activesupport4< 4.2.2UNKNOWN
FreeBSDanynoarchrubygem-jquery-rails< 3.1.3UNKNOWN
FreeBSDanynoarchrubygem-jquery-rails4< 4.0.4UNKNOWN
FreeBSDanynoarchrubygem-rack< 1.4.6UNKNOWN
FreeBSDanynoarchrubygem-rack15< 1.5.4UNKNOWN
FreeBSDanynoarchrubygem-rack16< 1.6.2UNKNOWN
FreeBSDanynoarchrubygem-rails< 3.2.22UNKNOWN
FreeBSDanynoarchrubygem-rails4< 4.2.2UNKNOWN
FreeBSDanynoarchrubygem-web-console< 2.1.3UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	rubygem-activesupport	< 3.2.22	UNKNOWN
FreeBSD	any	noarch	rubygem-activesupport4	< 4.2.2	UNKNOWN
FreeBSD	any	noarch	rubygem-jquery-rails	< 3.1.3	UNKNOWN
FreeBSD	any	noarch	rubygem-jquery-rails4	< 4.0.4	UNKNOWN
FreeBSD	any	noarch	rubygem-rack	< 1.4.6	UNKNOWN
FreeBSD	any	noarch	rubygem-rack15	< 1.5.4	UNKNOWN
FreeBSD	any	noarch	rubygem-rack16	< 1.6.2	UNKNOWN
FreeBSD	any	noarch	rubygem-rails	< 3.2.22	UNKNOWN
FreeBSD	any	noarch	rubygem-rails4	< 4.2.2	UNKNOWN
FreeBSD	any	noarch	rubygem-web-console	< 2.1.3	UNKNOWN