[SECURITY] Fedora 15 Update: rubygem-actionpack-3.0.5-6.fc15

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

rubygem-mail -- multiple vulnerabilities

rubygem-mail -- multiple vulnerabilities Two issues were fixed. They are a file system traversal in filedelivery method and arbitrary command execution when using exim or sendmail from the command line...

CVE-2012-2139 rubygem-mail: directory traversal

Directory traversal vulnerability in lib/mail/network/deliverymethods/filedelivery.rb in the Mail gem before 2.4.4 for Ruby allows remote attackers to read arbitrary files via a .. dot dot in the to parameter...

CVE-2012-2140 rubygem-mail: arbitrary command execution when using exim or sendmail from commandline

The Mail gem before 2.4.3 for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a 1 sendmail or 2 exim delivery...

Fedora 17 : rubygem-actionpack-3.0.11-2.fc17 / rubygem-activesupport-3.0.11-3.fc17 (2012-3166)

Fixes CVE-2012-1098 and CVE-2012-1099 for Fedora 17. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

CVE-2012-1098 rubygem-activesupport: XSS in SafeBuffer#[] (unescaped safe buffers can be marked as safe)

Cross-site scripting XSS vulnerability in Ruby on Rails 3.0.x before 3.0.12, 3.1.x before 3.1.4, and 3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving a SafeBuffer object that is manipulated through certain methods...

CVE-2012-1099 rubygem-actionpack: XSS in the "select" helper

Cross-site scripting XSS vulnerability in actionpack/lib/actionview/helpers/formoptionshelper.rb in the select helper in Ruby on Rails 3.0.x before 3.0.12, 3.1.x before 3.1.4, and 3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML via vectors involving certain...

FreeBSD Ports: jruby

The remote host is missing an update to the system as announced in the referenced advisory. VID 91be81e7-3fea-11e1-afc7-2c4138874f7d OpenVAS Vulnerability Test $ Description: Auto generated from VID 91be81e7-3fea-11e1-afc7-2c4138874f7d Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Fedora Update for rubygem-actionpack FEDORA-2012-0626

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

[SECURITY] Fedora 15 Update: rubygem-actionpack-3.0.5-5.fc15

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

[SECURITY] Fedora 16 Update: rubygem-actionpack-3.0.10-2.fc16

Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling ea sy unit/integration testing that doesn't require a browser...

Fedora Update for rubygem-rack FEDORA-2012-0233

Check for the Version of rubygem-rack OpenVAS Vulnerability Test Fedora Update for rubygem-rack FEDORA-2012-0233 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

Fedora Update for rubygem-rack FEDORA-2012-0233

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

Fedora 15 : rubygem-rack-1.1.0-4.fc15 (2012-0233)

Julian Walde and Alexander Klink reported a flaw in the hash function used in the implementation of the Ruby-rack arrays CVE-2011-5036. Ruby-rack arrays are implemented using the hash table that maps keys to values. This update fixes the bug. Note that Tenable Network Security has extracted the...

Fedora 16 : rubygem-rack-1.3.0-2.fc16 (2012-0166)

Julian Walde and Alexander Klink reported a flaw in the hash function used in the implementation of the Ruby-rack arrays CVE-2011-5036. Ruby-rack arrays are implemented using the hash table that maps keys to values. This update fixes the bug. Note that Tenable Network Security has extracted the...

[SECURITY] Fedora 15 Update: rubygem-rack-1.1.0-4.fc15

Rack provides a common API for connecting web frameworks, web servers and layers of software in between...

[SECURITY] Fedora 16 Update: rubygem-rack-1.3.0-2.fc16

Rack provides a common API for connecting web frameworks, web servers and layers of software in between...

FreeBSD Ports: rubygem-rails

The remote host is missing an update to the system as announced in the referenced advisory. VID be77eff6-ca91-11e0-aea3-00215c6a37bb OpenVAS Vulnerability Test $ Description: Auto generated from VID be77eff6-ca91-11e0-aea3-00215c6a37bb Authors: Thomas Reinke Copyright: Copyright c 2011 E-Soft Inc...

FreeBSD Ports: rubygem-rails

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2011 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Fedora Update for rubygem-actionpack FEDORA-2011-11567

Check for the Version of rubygem-actionpack OpenVAS Vulnerability Test Fedora Update for rubygem-actionpack FEDORA-2011-11567 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...