Lucene search
RubySecRUBY:PASSENGER-2013-4136-94074HistoryJun 09, 2013 - 8:00 p.m.
CVE-2013-4136 rubygem-passenger: insecure temporary directory usage due toreuse of existing server instance directories
2013-06-0920:00:00
RubySec
rubysec.com
5
ext/common/ServerInstanceDir.h in Phusion Passenger gem before 4.0.6
for Ruby allows local users to gain privileges or possibly change the ownership
of arbitrary directories via a symlink attack on a directory with a predictable
name in /tmp/.
References
Related
prion
prion
Design/Logic Flaw
2013-09-30 21:55:00
openvas
openvas
Fedora Update for rubygem-passenger FEDORA-2013-13297
2013-08-20 00:00:00
Fedora Update for rubygem-passenger FEDORA-2013-13231
2013-08-01 00:00:00
Fedora Update for rubygem-passenger FEDORA-2013-13297
2013-08-20 00:00:00
ubuntucve
ubuntucve
CVE-2013-4136
2013-09-30 00:00:00
osv
osv
insecure temporary directory usage in passenger
2017-10-24 18:33:37
fedora
fedora
[SECURITY] Fedora 17 Update: rubygem-passenger-3.0.21-4.fc17
2013-07-30 17:29:16
[SECURITY] Fedora 19 Update: rubygem-passenger-3.0.21-4.fc19
2013-07-30 17:32:15
[SECURITY] Fedora 18 Update: rubygem-passenger-3.0.21-4.fc18
2013-07-30 17:50:31
nessus
nessus
Fedora 19 : rubygem-passenger-3.0.21-4.fc19 (2013-13297)
2013-07-31 00:00:00
Fedora 17 : rubygem-passenger-3.0.21-4.fc17 (2013-13231)
2013-07-31 00:00:00
Fedora 18 : rubygem-passenger-3.0.21-4.fc18 (2013-13234)
2013-07-31 00:00:00
github
github
insecure temporary directory usage in passenger
2017-10-24 18:33:37
debiancve
debiancve
CVE-2013-4136
2013-09-30 21:55:00
cve
cve
CVE-2013-4136
2013-09-30 21:55:00
redhat
redhat
(RHSA-2013:1136) Moderate: rubygem-passenger security update
2013-08-05 00:00:00
mageia
mageia
Updated rubygem-passenger package fixes CVE-2013-4136 & apache module
2013-08-22 22:01:03
Related for RUBY:PASSENGER-2013-4136-94074