Back to bug 1095105
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Murray McAllister | 2014-05-07 07:41:39 UTC | Blocks | 1095109 | |
| Murray McAllister | 2014-05-07 07:52:02 UTC | Depends On | 1095117 | |
| Murray McAllister | 2014-05-07 07:52:28 UTC | Depends On | 1095118 | |
| Murray McAllister | 2014-05-07 07:52:51 UTC | Depends On | 1095119 | |
| Murray McAllister | 2014-05-07 07:53:19 UTC | Depends On | 1095120 | |
| Murray McAllister | 2014-05-07 07:53:34 UTC | Depends On | 1095121 | |
| Murray McAllister | 2014-05-07 07:53:51 UTC | Depends On | 1095122 | |
| Murray McAllister | 2014-05-07 07:54:11 UTC | Depends On | 1095123 | |
| Murray McAllister | 2014-05-07 07:54:30 UTC | Depends On | 1095124 | |
| Murray McAllister | 2014-05-07 07:54:48 UTC | Depends On | 1095125 | |
| Murray McAllister | 2014-05-07 07:55:04 UTC | Depends On | 1095126 | |
| Murray McAllister | 2014-05-07 07:55:23 UTC | Depends On | 1095127 | |
| Murray McAllister | 2014-05-07 07:55:42 UTC | Depends On | 1095128 | |
| Murray McAllister | 2014-05-07 07:56:01 UTC | Depends On | 1095129 | |
| Murray McAllister | 2014-05-07 07:56:18 UTC | Depends On | 1095131 | |
| Tomas Hoger | 2014-05-07 08:19:57 UTC | Summary | CVE-2014-0130 Ruby on Rails: directory traversal issue | CVE-2014-0130 rubygem-actionpack: directory traversal issue |
| Tomas Hoger | 2014-05-07 08:28:18 UTC | Whiteboard | impact=moderate,public=20140506,reported=20140507,source=osssecurity,cvss2=5.0/AV:N/AC:L/Au:N/C:P/I:N/A:N,fedora-all/rubygem-rails=affected,epel-5/rubygem-rails=affected,sam-1/rubygem-rails=affected,sam-1/ruby193-rubygem-rails=affected,rhscl-1/ruby193-rubygem-rails=affected,openstack-3/ruby193-rubygem-rails=affected,openstack-4/ruby193-rubygem-rails=affected,openshift-enterprise-1/ruby193-rubygem-rails=affected,openshift-1/ruby193-rubygem-rails=affected,cfme-5/ruby193-rubygem-rails=affected,fedora-all/rubygem-actionmailer=affected,epel-5/rubygem-actionmailer=affected,sam-1/rubygem-actionmailer=affected,sam-1/ruby193-rubygem-actionmailer=affected,rhscl-1/ruby193-rubygem-actionmailer=affected,openstack-3/ruby193-rubygem-actionmailer=affected,openstack-4/ruby193-rubygem-actionmailer=affected,openshift-enterprise-1/ruby193-rubygem-actionmailer=affected,openshift-1/ruby193-rubygem-actionmailer=affected,rhscl-1/ror40-rubygem-actionmailer=affected,cfme-5/ruby193-rubygem-actionmailer=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,rhscl-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-activemodel=affected,sam-1/rubygem-activemodel=affected,sam-1/ruby193-rubygem-activemodel=affected,rhscl-1/ruby193-rubygem-activemodel=affected,openstack-3/ruby193-rubygem-activemodel=affected,openstack-4/ruby193-rubygem-activemodel=affected,openshift-enterprise-1/ruby193-rubygem-activemodel=affected,openshift-1/ruby193-rubygem-activemodel=affected,openshift-1/rubygem-activemodel=affected,rhscl-1/ror40-rubygem-activemodel=affected,cfme-5/ruby193-rubygem-activemodel=affected,fedora-all/rubygem-activerecord=affected,epel-5/rubygem-activerecord=affected,sam-1/rubygem-activerecord=affected,sam-1/ruby193-rubygem-activerecord=affected,rhscl-1/ruby193-rubygem-activerecord=affected,openstack-3/ruby193-rubygem-activerecord=affected,openstack-4/ruby193-rubygem-audited-activerecord=affected,openshift-enterprise-1/ruby193-rubygem-activerecord=affected,openshift-1/ruby193-rubygem-activerecord=affected,rhscl-1/ror40-rubygem-activerecord=affected,cfme-5/ruby193-rubygem-activerecord=affected,fedora-all/rubygem-activeresource=affected,epel-5/rubygem-activeresource=affected,sam-1/rubygem-activeresource=affected,sam-1/ruby193-rubygem-activeresource=affected,cfme-5/ruby193-rubygem-activeresource=affected,rhscl-1/ruby193-rubygem-activeresource=affected,openstack-3/ruby193-rubygem-activeresource=affected,openstack-4/ruby193-rubygem-activeresource=affected,openshift-enterprise-1/ruby193-rubygem-activeresource=affected,openshift-1/ruby193-rubygem-activeresource=affected,rhscl-1/ror40-rubygem-activeresource=affected,fedora-all/rubygem-activesupport=affected,epel-all/rubygem-activesupport=affected,sam-1/rubygem-activesupport=affected,sam-1/ruby193-rubygem-activesupport=affected,cfme-5/ruby193-rubygem-activesupport=affected,rhscl-1/ruby193-rubygem-activesupport=affected,openstack-3/ruby193-rubygem-activesupport=affected,openstack-4/ruby193-rubygem-activesupport=affected,openshift-enterprise-1/ruby193-rubygem-activesupport=affected,openshift-1/rubygem-activesupport=affected,rhscl-1/ror40-rubygem-activesupport=affected,fedora-all/rubygem-railties=affected,sam-1/rubygem-railties=affected,sam-1/ruby193-rubygem-railties=affected,cfme-5/ruby193-rubygem-railties=affected,rhscl-1/ruby193-rubygem-railties=affected,openstack-3/ruby193-rubygem-railties=affected,openstack-4/ruby193-rubygem-railties=affected,openshift-enterprise-1/ruby193-rubygem-railties=affected,openshift-1/ruby193-rubygem-railties=affected,rhscl-1/ror40-rubygem-railties=affected | impact=moderate,public=20140506,reported=20140507,source=osssecurity,cvss2=5.0/AV:N/AC:L/Au:N/C:P/I:N/A:N,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-rails=affected,sam-1/ruby193-rubygem-rails=affected,openstack-3/ruby193-rubygem-rails=affected,openstack-4/ruby193-rubygem-rails=affected,openshift-enterprise-1/ruby193-rubygem-rails=affected,openshift-1/ruby193-rubygem-rails=affected,cfme-5/ruby193-rubygem-rails=affected,sam-1/rubygem-actionmailer=affected,sam-1/ruby193-rubygem-actionmailer=affected,openstack-3/ruby193-rubygem-actionmailer=affected,openstack-4/ruby193-rubygem-actionmailer=affected,openshift-enterprise-1/ruby193-rubygem-actionmailer=affected,openshift-1/ruby193-rubygem-actionmailer=affected,cfme-5/ruby193-rubygem-actionmailer=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,sam-1/rubygem-activemodel=affected,sam-1/ruby193-rubygem-activemodel=affected,openstack-3/ruby193-rubygem-activemodel=affected,openstack-4/ruby193-rubygem-activemodel=affected,openshift-enterprise-1/ruby193-rubygem-activemodel=affected,openshift-1/ruby193-rubygem-activemodel=affected,openshift-1/rubygem-activemodel=affected,cfme-5/ruby193-rubygem-activemodel=affected,sam-1/rubygem-activerecord=affected,sam-1/ruby193-rubygem-activerecord=affected,openstack-3/ruby193-rubygem-activerecord=affected,openstack-4/ruby193-rubygem-audited-activerecord=affected,openshift-enterprise-1/ruby193-rubygem-activerecord=affected,openshift-1/ruby193-rubygem-activerecord=affected,cfme-5/ruby193-rubygem-activerecord=affected,sam-1/rubygem-activeresource=affected,sam-1/ruby193-rubygem-activeresource=affected,cfme-5/ruby193-rubygem-activeresource=affected,openstack-3/ruby193-rubygem-activeresource=affected,openstack-4/ruby193-rubygem-activeresource=affected,openshift-enterprise-1/ruby193-rubygem-activeresource=affected,openshift-1/ruby193-rubygem-activeresource=affected,sam-1/rubygem-activesupport=affected,sam-1/ruby193-rubygem-activesupport=affected,cfme-5/ruby193-rubygem-activesupport=affected,openstack-3/ruby193-rubygem-activesupport=affected,openstack-4/ruby193-rubygem-activesupport=affected,openshift-enterprise-1/ruby193-rubygem-activesupport=affected,openshift-1/rubygem-activesupport=affected,sam-1/rubygem-railties=affected,sam-1/ruby193-rubygem-railties=affected,cfme-5/ruby193-rubygem-railties=affected,openstack-3/ruby193-rubygem-railties=affected,openstack-4/ruby193-rubygem-railties=affected,openshift-enterprise-1/ruby193-rubygem-railties=affected,openshift-1/ruby193-rubygem-railties=affected,fedora-all/rubygem-rails=affected,epel-5/rubygem-rails=affected,fedora-all/rubygem-actionmailer=affected,epel-5/rubygem-actionmailer=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-activemodel=affected,fedora-all/rubygem-activerecord=affected,epel-5/rubygem-activerecord=affected,fedora-all/rubygem-activeresource=affected,epel-5/rubygem-activeresource=affected,fedora-all/rubygem-activesupport=affected,epel-all/rubygem-activesupport=affected,fedora-all/rubygem-railties=affected |
| Tomas Hoger | 2014-05-07 08:49:55 UTC | Depends On | 1095172 | |
| Tomas Hoger | 2014-05-07 09:00:18 UTC | Whiteboard | impact=moderate,public=20140506,reported=20140507,source=osssecurity,cvss2=5.0/AV:N/AC:L/Au:N/C:P/I:N/A:N,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-rails=affected,sam-1/ruby193-rubygem-rails=affected,openstack-3/ruby193-rubygem-rails=affected,openstack-4/ruby193-rubygem-rails=affected,openshift-enterprise-1/ruby193-rubygem-rails=affected,openshift-1/ruby193-rubygem-rails=affected,cfme-5/ruby193-rubygem-rails=affected,sam-1/rubygem-actionmailer=affected,sam-1/ruby193-rubygem-actionmailer=affected,openstack-3/ruby193-rubygem-actionmailer=affected,openstack-4/ruby193-rubygem-actionmailer=affected,openshift-enterprise-1/ruby193-rubygem-actionmailer=affected,openshift-1/ruby193-rubygem-actionmailer=affected,cfme-5/ruby193-rubygem-actionmailer=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,sam-1/rubygem-activemodel=affected,sam-1/ruby193-rubygem-activemodel=affected,openstack-3/ruby193-rubygem-activemodel=affected,openstack-4/ruby193-rubygem-activemodel=affected,openshift-enterprise-1/ruby193-rubygem-activemodel=affected,openshift-1/ruby193-rubygem-activemodel=affected,openshift-1/rubygem-activemodel=affected,cfme-5/ruby193-rubygem-activemodel=affected,sam-1/rubygem-activerecord=affected,sam-1/ruby193-rubygem-activerecord=affected,openstack-3/ruby193-rubygem-activerecord=affected,openstack-4/ruby193-rubygem-audited-activerecord=affected,openshift-enterprise-1/ruby193-rubygem-activerecord=affected,openshift-1/ruby193-rubygem-activerecord=affected,cfme-5/ruby193-rubygem-activerecord=affected,sam-1/rubygem-activeresource=affected,sam-1/ruby193-rubygem-activeresource=affected,cfme-5/ruby193-rubygem-activeresource=affected,openstack-3/ruby193-rubygem-activeresource=affected,openstack-4/ruby193-rubygem-activeresource=affected,openshift-enterprise-1/ruby193-rubygem-activeresource=affected,openshift-1/ruby193-rubygem-activeresource=affected,sam-1/rubygem-activesupport=affected,sam-1/ruby193-rubygem-activesupport=affected,cfme-5/ruby193-rubygem-activesupport=affected,openstack-3/ruby193-rubygem-activesupport=affected,openstack-4/ruby193-rubygem-activesupport=affected,openshift-enterprise-1/ruby193-rubygem-activesupport=affected,openshift-1/rubygem-activesupport=affected,sam-1/rubygem-railties=affected,sam-1/ruby193-rubygem-railties=affected,cfme-5/ruby193-rubygem-railties=affected,openstack-3/ruby193-rubygem-railties=affected,openstack-4/ruby193-rubygem-railties=affected,openshift-enterprise-1/ruby193-rubygem-railties=affected,openshift-1/ruby193-rubygem-railties=affected,fedora-all/rubygem-rails=affected,epel-5/rubygem-rails=affected,fedora-all/rubygem-actionmailer=affected,epel-5/rubygem-actionmailer=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected,fedora-all/rubygem-activemodel=affected,fedora-all/rubygem-activerecord=affected,epel-5/rubygem-activerecord=affected,fedora-all/rubygem-activeresource=affected,epel-5/rubygem-activeresource=affected,fedora-all/rubygem-activesupport=affected,epel-all/rubygem-activesupport=affected,fedora-all/rubygem-railties=affected | impact=moderate,public=20140506,reported=20140507,source=osssecurity,cvss2=5.0/AV:N/AC:L/Au:N/C:P/I:N/A:N,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-rails=affected,sam-1/ruby193-rubygem-rails=affected,openstack-3/ruby193-rubygem-rails=affected,openstack-4/ruby193-rubygem-rails=affected,openshift-enterprise-1/ruby193-rubygem-rails=affected,openshift-1/ruby193-rubygem-rails=affected,cfme-5/ruby193-rubygem-rails=affected,sam-1/rubygem-actionmailer=affected,sam-1/ruby193-rubygem-actionmailer=affected,openstack-3/ruby193-rubygem-actionmailer=affected,openstack-4/ruby193-rubygem-actionmailer=affected,openshift-enterprise-1/ruby193-rubygem-actionmailer=affected,openshift-1/ruby193-rubygem-actionmailer=affected,cfme-5/ruby193-rubygem-actionmailer=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,sam-1/rubygem-activemodel=affected,sam-1/ruby193-rubygem-activemodel=affected,openstack-3/ruby193-rubygem-activemodel=affected,openstack-4/ruby193-rubygem-activemodel=affected,openshift-enterprise-1/ruby193-rubygem-activemodel=affected,openshift-1/ruby193-rubygem-activemodel=affected,openshift-1/rubygem-activemodel=affected,cfme-5/ruby193-rubygem-activemodel=affected,sam-1/rubygem-activerecord=affected,sam-1/ruby193-rubygem-activerecord=affected,openstack-3/ruby193-rubygem-activerecord=affected,openstack-4/ruby193-rubygem-audited-activerecord=affected,openshift-enterprise-1/ruby193-rubygem-activerecord=affected,openshift-1/ruby193-rubygem-activerecord=affected,cfme-5/ruby193-rubygem-activerecord=affected,sam-1/rubygem-activeresource=affected,sam-1/ruby193-rubygem-activeresource=affected,cfme-5/ruby193-rubygem-activeresource=affected,openstack-3/ruby193-rubygem-activeresource=affected,openstack-4/ruby193-rubygem-activeresource=affected,openshift-enterprise-1/ruby193-rubygem-activeresource=affected,openshift-1/ruby193-rubygem-activeresource=affected,sam-1/rubygem-activesupport=affected,sam-1/ruby193-rubygem-activesupport=affected,cfme-5/ruby193-rubygem-activesupport=affected,openstack-3/ruby193-rubygem-activesupport=affected,openstack-4/ruby193-rubygem-activesupport=affected,openshift-enterprise-1/ruby193-rubygem-activesupport=affected,openshift-1/rubygem-activesupport=affected,sam-1/rubygem-railties=affected,sam-1/ruby193-rubygem-railties=affected,cfme-5/ruby193-rubygem-railties=affected,openstack-3/ruby193-rubygem-railties=affected,openstack-4/ruby193-rubygem-railties=affected,openshift-enterprise-1/ruby193-rubygem-railties=affected,openshift-1/ruby193-rubygem-railties=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected |
| Salvatore Bonaccorso | 2014-05-08 05:01:22 UTC | CC | carnil | |
| Tomas Hoger | 2014-05-09 08:36:07 UTC | Whiteboard | impact=moderate,public=20140506,reported=20140507,source=osssecurity,cvss2=5.0/AV:N/AC:L/Au:N/C:P/I:N/A:N,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-rails=affected,sam-1/ruby193-rubygem-rails=affected,openstack-3/ruby193-rubygem-rails=affected,openstack-4/ruby193-rubygem-rails=affected,openshift-enterprise-1/ruby193-rubygem-rails=affected,openshift-1/ruby193-rubygem-rails=affected,cfme-5/ruby193-rubygem-rails=affected,sam-1/rubygem-actionmailer=affected,sam-1/ruby193-rubygem-actionmailer=affected,openstack-3/ruby193-rubygem-actionmailer=affected,openstack-4/ruby193-rubygem-actionmailer=affected,openshift-enterprise-1/ruby193-rubygem-actionmailer=affected,openshift-1/ruby193-rubygem-actionmailer=affected,cfme-5/ruby193-rubygem-actionmailer=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,sam-1/rubygem-activemodel=affected,sam-1/ruby193-rubygem-activemodel=affected,openstack-3/ruby193-rubygem-activemodel=affected,openstack-4/ruby193-rubygem-activemodel=affected,openshift-enterprise-1/ruby193-rubygem-activemodel=affected,openshift-1/ruby193-rubygem-activemodel=affected,openshift-1/rubygem-activemodel=affected,cfme-5/ruby193-rubygem-activemodel=affected,sam-1/rubygem-activerecord=affected,sam-1/ruby193-rubygem-activerecord=affected,openstack-3/ruby193-rubygem-activerecord=affected,openstack-4/ruby193-rubygem-audited-activerecord=affected,openshift-enterprise-1/ruby193-rubygem-activerecord=affected,openshift-1/ruby193-rubygem-activerecord=affected,cfme-5/ruby193-rubygem-activerecord=affected,sam-1/rubygem-activeresource=affected,sam-1/ruby193-rubygem-activeresource=affected,cfme-5/ruby193-rubygem-activeresource=affected,openstack-3/ruby193-rubygem-activeresource=affected,openstack-4/ruby193-rubygem-activeresource=affected,openshift-enterprise-1/ruby193-rubygem-activeresource=affected,openshift-1/ruby193-rubygem-activeresource=affected,sam-1/rubygem-activesupport=affected,sam-1/ruby193-rubygem-activesupport=affected,cfme-5/ruby193-rubygem-activesupport=affected,openstack-3/ruby193-rubygem-activesupport=affected,openstack-4/ruby193-rubygem-activesupport=affected,openshift-enterprise-1/ruby193-rubygem-activesupport=affected,openshift-1/rubygem-activesupport=affected,sam-1/rubygem-railties=affected,sam-1/ruby193-rubygem-railties=affected,cfme-5/ruby193-rubygem-railties=affected,openstack-3/ruby193-rubygem-railties=affected,openstack-4/ruby193-rubygem-railties=affected,openshift-enterprise-1/ruby193-rubygem-railties=affected,openshift-1/ruby193-rubygem-railties=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected | impact=moderate,public=20140506,reported=20140507,source=osssecurity,cvss2=5.0/AV:N/AC:L/Au:N/C:P/I:N/A:N,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected |
| Tomas Hoger | 2014-05-09 08:37:37 UTC | Depends On | 1096085 | |
| Tomas Hoger | 2014-05-09 08:37:52 UTC | Depends On | 1096086 | |
| Kurt Seifried | 2014-05-28 17:55:44 UTC | Depends On | 1102307 | |
| Kurt Seifried | 2014-05-28 17:55:52 UTC | Depends On | 1102308 | |
| Kurt Seifried | 2014-05-28 17:55:59 UTC | Depends On | 1102309 | |
| Kurt Seifried | 2014-05-28 17:56:08 UTC | Depends On | 1102310 | |
| Kurt Seifried | 2014-05-28 17:56:32 UTC | Depends On | 1102311 | |
| Kurt Seifried | 2014-05-28 17:56:40 UTC | Depends On | 1102312 | |
| Kurt Seifried | 2014-05-30 01:44:44 UTC | Priority | medium | high |
| Whiteboard | impact=moderate,public=20140506,reported=20140507,source=osssecurity,cvss2=5.0/AV:N/AC:L/Au:N/C:P/I:N/A:N,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected | impact=important,public=20140506,reported=20140507,source=osssecurity,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected | ||
| Severity | medium | high | ||
| Dan Clarizio | 2014-05-30 13:18:50 UTC | CC | mpovolny | |
| Kurt Seifried | 2014-06-16 21:52:49 UTC | Blocks | 1086525 | |
| John Skeoch | 2014-06-18 07:59:30 UTC | CC | tkramer | mmcgrath |
| John Skeoch | 2014-06-24 00:12:53 UTC | CC | dallan | |
| Martin Povolny | 2014-10-03 07:25:56 UTC | CC | mpovolny | |
| Kurt Seifried | 2014-10-28 23:05:09 UTC | Whiteboard | impact=important,public=20140506,reported=20140507,source=osssecurity,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=affected,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected | impact=important,public=20140506,reported=20140507,source=osssecurity,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected |
| Marianne Feifer | 2014-10-29 13:13:34 UTC | CC | mfeifer | |
| John Skeoch | 2014-11-09 22:57:29 UTC | CC | jomara | athomas |
| Kurt Seifried | 2014-11-13 06:10:31 UTC | Blocks | 1000138 | |
| Martin Prpič | 2014-11-14 16:19:00 UTC | Doc Text | A directory traversal flaw was found in the way Ruby on Rails handled wildcard segments in routes with implicit rendering. A remote attacker could use this flaw to retrieve arbitrary local files accessible to a Ruby on Rails application using the aforementioned routes via a specially crafted request. | |
| Ján Rusnačko | 2014-11-21 10:13:48 UTC | CC | jrusnack | |
| Whiteboard | impact=important,public=20140506,reported=20140507,source=osssecurity,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected | impact=important,public=20140506,reported=20140507,source=osssecurity,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected,cwe=CWE-20->CWE-22 | ||
| John Skeoch | 2015-01-04 22:46:56 UTC | CC | vdanen | |
| Vincent Danen | 2015-01-05 17:00:51 UTC | CC | vdanen | |
| Kurt Seifried | 2015-01-17 05:36:03 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2015-01-17 00:36:03 UTC | |||
| Garth Mollett | 2015-01-20 21:39:09 UTC | CC | gmollett | |
| Whiteboard | impact=important,public=20140506,reported=20140507,source=osssecurity,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=affected,openstack-4/ruby193-rubygem-actionpack=affected,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected,cwe=CWE-20->CWE-22 | impact=important,public=20140506,reported=20140507,source=osssecurity,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=wontfix,openstack-4/ruby193-rubygem-actionpack=wontfix,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected,cwe=CWE-20->CWE-22 | ||
| Ján Rusnačko | 2015-07-31 07:20:07 UTC | Whiteboard | impact=important,public=20140506,reported=20140507,source=osssecurity,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=wontfix,openstack-4/ruby193-rubygem-actionpack=wontfix,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected,cwe=CWE-20->CWE-22 | impact=important,public=20140506,reported=20140507,source=oss-security,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=wontfix,openstack-4/ruby193-rubygem-actionpack=wontfix,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected,cwe=CWE-20->CWE-22 |
| Perry Myers | 2016-04-27 03:52:37 UTC | CC | pmyers | |
| Product Security DevOps Team | 2019-09-29 13:17:38 UTC | Whiteboard | impact=important,public=20140506,reported=20140507,source=oss-security,cvss2=7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P,rhscl-1/ruby193-rubygem-actionpack=affected,rhscl-1/ror40-rubygem-actionpack=affected,sam-1/rubygem-actionpack=affected,sam-1/ruby193-rubygem-actionpack=affected,openstack-3/ruby193-rubygem-actionpack=wontfix,openstack-4/ruby193-rubygem-actionpack=wontfix,openshift-enterprise-1/ruby193-rubygem-actionpack=wontfix,openshift-1/ruby193-rubygem-actionpack=affected,cfme-5/ruby193-rubygem-actionpack=affected,fedora-all/rubygem-actionpack=affected,epel-5/rubygem-actionpack=affected,cwe=CWE-20->CWE-22 |
Back to bug 1095105