1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2013-16316

[FEDORA-2013-16316] Fedora 18: rubygems

Severity Medium
Affected Packages 1
CVEs 1
Info Packages Vulnerabilities

A vulnerability was found on rubygems currently being shipped on Fedora in validating versions with a regular expression which leads to denial of service due to backtracking. This issue are now assigned as CVE-2013-4287.

This new rpm will fix this issue.

Package Affected Version
pkg:rpm/fedora/rubygems?distro=fedora-18 < 1.8.25.7.fc18
ID
FEDORA-2013-16316
Severity
medium
Severity from
CVE-2013-4287
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2013-16316
Published
2013-09-20T16:19:23
(11 years ago)
Modified
2013-09-20T16:19:23
(11 years ago)
Rights
Copyright 2013 Red Hat, Inc.
Other Advisories
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/rubygems?distro=fedora-18 fedora rubygems < 1.8.25.7.fc18 fedora-18
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date