30 Aug '17, 1pm

Multiple vulnerabilities in RubyGems

Multiple vulnerabilities in RubyGems Posted by usa on 29 Aug 2017 There are multiple vulnerabilities in RubyGems bundled by Ruby. It is reported at the official blog of RubyGems . Details The following vulnerabilities have been reported. a DNS request hijacking vulnerability. (CVE-2017-0902) an ANSI escape sequence vulnerability. (CVE-2017-0899) a DoS vulnerability in the query command. (CVE-2017-0900) a vulnerability in the gem installer that allowed a malicious gem to overwrite arbitrary files. (CVE-2017-0901) It is strongly recommended for Ruby users to take one of the following workarounds as soon as possible. Affected Versions Ruby 2.2 series: 2.2.7 and earlier Ruby 2.3 series: 2.3.4 and earlier Ruby 2.4 series: 2.4.1 and earlier prior to trunk revision 59672 Workarounds At this moment, there are no Ruby releases including the fix for RubyGems. But you can upgrade Rub...

Full article: http://www.ruby-lang.org/en/news/2017/08/29/multiple-vuln...

Tweets

Multiple vulnerabilities in RubyGems

ruby-lang.org 29 Aug '17, 2pm

Multiple vulnerabilities in RubyGems Posted by usa on 29 Aug 2017 There are multiple vulnerabilities in RubyGems bundled b...

Ruby Weekly ➜ #364: Multiple Vulnerabilities in RubyGems https://t.co/DlUnGYPErC

Ruby Weekly ➜ #364: Multiple Vulnerabilities in...

rubyweekly.com 31 Aug '17, 4pm

ruby-lang.org Multiple Vulnerabilities in RubyGems, Upgrade Now It’s time to run gem update --system and get up to RubyGem...

RubyGems

ruby-lang.org 29 Aug '17, 2pm

a DNS request hijacking vulnerability an ANSI escape sequence vulnerability a DOS vulernerability in the query command a v...

Keeping it Together: Managing a Network Across ...

blogtrepreneur.com 30 Aug '17, 1pm

Keeping it Together: Managing a Network Across Multiple Locations This is a sponsored post written by me on behalf of CBTS...

Open discussion: Apache2 VirtualHost plugin_ass...

redmine.org 31 Aug '17, 2pm

Its about an standard installation of the debian package redmine with multiple instances Below apache2 configuration is wo...

[blog] gbifrb: 1st ver of a @GBIF #ruby client ...

rubygems.org 08 Sep '17, 12am

Status Uptime Code Data Discuss Stats Blog About Help API Security RubyGems.org is the Ruby community’s gem hosting servic...

Florida Veterinarian Arrested on Multiple Counts of Felony Animal Cruelty #care2

Florida Veterinarian Arrested on Multiple Count...

care2.com 29 Aug '17, 10pm

Wouldn’t you expect a veterinarian to be a fierce animal protector? Sadly, that’s not always the case. The latest disappoi...