Download
| Alert*
|
oval:org.secpod.oval:def:701016
ruby1.9.1: Interpreter of object-oriented scripting language Ruby Several security issues were fixed in ruby1.9.1 oval:org.secpod.oval:def:701015 rubygems: package management framework for Ruby libraries/applications RubyGems could be made to download and install malicious gem files. oval:org.secpod.oval:def:1601262 RubyGems before 1.8.23 can redirect HTTPS connections to HTTP, which makes it easier for remote attackers to observe or modify a gem during installation via a man-in-the-middle attack. oval:org.secpod.oval:def:103709 RubyGems is the Ruby standard for publishing and managing third party libraries. oval:org.secpod.oval:def:1500268 An updated rubygems package that fixes three security issues is now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System base scores, which give detailed severity ratings, are avail ... oval:org.secpod.oval:def:103729 RubyGems is the Ruby standard for publishing and managing third party libraries. oval:org.secpod.oval:def:103722 RubyGems is the Ruby standard for publishing and managing third party libraries. oval:org.secpod.oval:def:202952 RubyGems is the Ruby standard for publishing and managing third-party libraries. It was found that RubyGems did not verify SSL connections. This could lead to man-in-the-middle attacks. It was found that, when using RubyGems, the connection could be redirected from HTTPS to HTTP. This could lead to ... |
