Skip to content
This repository has been archived by the owner on Oct 25, 2022. It is now read-only.

Gem security updates. #70

Merged
merged 1 commit into from
Nov 1, 2018
Merged

Gem security updates. #70

merged 1 commit into from
Nov 1, 2018

Conversation

rimenes
Copy link
Contributor

@rimenes rimenes commented Oct 23, 2018

Name: nokogiri
Version: 1.8.4
Advisory: CVE-2018-14404
Criticality: Unknown
URL: sparklemotion/nokogiri#1785
Title: Nokogiri gem, via libxml2, is affected by multiple vulnerabilities
Solution: upgrade to >= 1.8.5

Name: rubyzip
Version: 1.2.1
Advisory: CVE-2018-1000544
Criticality: Unknown
URL: rubyzip/rubyzip#369
Title: Directory Traversal in rubyzip
Solution: upgrade to >= 1.2.2

@rimenes
Gem security updates.
4a73f2f 
Name: nokogiri
Version: 1.8.4
Advisory: CVE-2018-14404
Criticality: Unknown
URL: sparklemotion/nokogiri#1785
Title: Nokogiri gem, via libxml2, is affected by multiple vulnerabilities
Solution: upgrade to >= 1.8.5

Name: rubyzip
Version: 1.2.1
Advisory: CVE-2018-1000544
Criticality: Unknown
URL: rubyzip/rubyzip#369
Title: Directory Traversal in rubyzip
Solution: upgrade to >= 1.2.2
@Shpigford Shpigford merged commit e2ff80d into DroptuneHQ:master Nov 1, 2018
@rimenes rimenes deleted the security-update branch December 5, 2018 20:48
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rimenes @Shpigford