stable

rubygem-actionpack-4.2.0-3.fc22 and rubygem-activemodel-4.2.0-2.fc22

FEDORA-2016-94e71ee673 created by pvalena 8 years ago for Fedora 22

Security fix for CVE-2015-7581 CVE-2015-7576 CVE-2016-0751 CVE-2016-0752 CVE-2016-0753

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2016-94e71ee673

This update has been submitted for testing by pvalena.

8 years ago

This update has been pushed to testing.

8 years ago

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

8 years ago

This update has been submitted for stable by pvalena.

8 years ago

This update has been pushed to stable.

8 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
disabled
Dates
submitted
8 years ago
in testing
8 years ago
in stable
8 years ago
BZ#1301933 CVE-2015-7576 rubygem-actionpack: Timing attack vulnerability in basic authentication in Action Controller
0
0
BZ#1301946 CVE-2016-0751 rubygem-actionpack: possible object leak and denial of service attack in Action Pack
0
0
BZ#1301948 CVE-2016-0751 rubygem-actionpack: Possible Object Leak and Denial of Service attack in Action Pack [fedora-all]
0
0
BZ#1301973 CVE-2016-0753 rubygem-activemodel, rubygem-activerecord: possible input validation circumvention in Active Model
0
0
BZ#1301977 CVE-2016-0753 rubygem-activemodel: Possible Input Validation Circumvention in Active Model [fedora-all]
0
0
BZ#1301981 CVE-2015-7581 rubygem-actionpack: Object leak vulnerability for wildcard controller routes in Action Pack
0
0
BZ#1301983 CVE-2015-7581 rubygem-actionpack: Object leak vulnerability for wildcard controller routes in Action Pack [fedora-all]
0
0
BZ#1301996 CVE-2015-7576 rubygem-actionpack: Timing attack vulnerability in basic authentication in Action Controller [fedora-all]
0
0
BZ#1301999 CVE-2015-7576 rubygem-activesupport: rubygem-actionpack: Timing attack vulnerability in basic authentication in Action Controller [fedora-all]
0
0

Automated Test Results