• Fix open redirect vulnerability which may lead to confidentiality and integrity compromise.
  • Fix crafted input which may cause a regular expression DoS.

How to install

sudo dnf upgrade --advisory=FEDORA-2021-b571fca1b8

This update has been submitted for testing by vondruch.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

This update's test gating status has been changed to 'waiting'.

7 months ago

vondruch edited this update.

New build(s):

  • rubygem-activerecord-6.0.3.4-2.fc33

Karma has been reset.

7 months ago

This update's test gating status has been changed to 'ignored'.

7 months ago

This update has been pushed to testing.

7 months ago

This update can be pushed to stable now if the maintainer wishes

7 months ago

This update has been submitted for stable by bodhi.

7 months ago

This update has been pushed to stable.

7 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Stable by Time
7 days
Dates
submitted
7 months ago
in testing
7 months ago
in stable
7 months ago
modified
7 months ago
BZ#1930102 CVE-2021-22880 rubygem-activerecord: crafted input may cause a regular expression DoS
0
0
BZ#1930103 CVE-2021-22880 rubygem-activerecord: crafted input may cause a regular expression DoS [fedora-all]
0
0
BZ#1930211 CVE-2021-22881 rubygem-actionpack: open redirect vulnerability may lead to confidentiality and integrity compromise
0
0
BZ#1930212 CVE-2021-22881 rubygem-actionpack: open redirect vulnerability may lead to confidentiality and integrity compromise [fedora-all]
0
0

Automated Test Results