[FEDORA-2013-16251] Fedora 20: rubygems
Severity
Medium
Affected Packages
1
CVEs
1
A vulnerability was found on rubygems currently being shipped on Fedora in validating versions with a regular expression which leads to denial of service due to backtracking. This issue are now assigned as CVE-2013-4287.
This new rpm will fix this issue.
Package | Affected Version |
---|---|
pkg:rpm/fedora/rubygems?distro=fedora-20 | < 2.0.8.104.fc20 |
- ID
- FEDORA-2013-16251
- Severity
- medium
- Severity from
- CVE-2013-4287
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2013-16251
- Published
-
2013-09-23T00:28:12
(11 years ago) - Modified
-
2013-09-23T00:28:12
(11 years ago) - Rights
- Copyright 2013 Red Hat, Inc.
- Other Advisories
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/rubygems?distro=fedora-20 | fedora | rubygems | < 2.0.8.104.fc20 | fedora-20 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |