Описание
ELSA-2015-2180: rubygem-bundler and rubygem-thor security, bug fix, and enhancement update (MODERATE)
rubygem-bundler [1.7.8-3]
- Enforce higher Thor version, which is required by Bundler. Related: rhbz#1194243
[1.7.8-2]
- Update to Bundler 1.7.8. Resolves: rhbz#1194243
- Use symlinks for vendored libraries. Resolves: rhbz#1163076
[1.3.1-3]
- Mass rebuild 2013-12-27
[1.3.1-2]
- Always include Patch100 in SRPM.
[1.3.1-1] rubygem-thor [0.19.1-1]
- Update to thor 1.19.1. Resolves: rhbz#1209921
Обновленные пакеты
Oracle Linux 7
Oracle Linux aarch64
rubygem-bundler
1.7.8-3.el7
rubygem-bundler-doc
1.7.8-3.el7
rubygem-thor
0.19.1-1.el7
rubygem-thor-doc
0.19.1-1.el7
Oracle Linux x86_64
rubygem-bundler
1.7.8-3.el7
rubygem-bundler-doc
1.7.8-3.el7
rubygem-thor
0.19.1-1.el7
rubygem-thor-doc
0.19.1-1.el7
Связанные CVE
Связанные уязвимости
Bundler before 1.7, when multiple top-level source lines are used, allows remote attackers to install arbitrary gems by creating a gem with the same name as another gem in a different source.
Bundler before 1.7, when multiple top-level source lines are used, allows remote attackers to install arbitrary gems by creating a gem with the same name as another gem in a different source.
Bundler before 1.7, when multiple top-level source lines are used, allows remote attackers to install arbitrary gems by creating a gem with the same name as another gem in a different source.
Bundler before 1.7, when multiple top-level source lines are used, all ...
