There is a possible information disclosure issue in Active Resource <v5.1.1 that could allow an attacker to create specially crafted requests to access data in an unexpected way and possibly leak information. Upstream Advisory: https://groups.google.com/forum/#!topic/rubyonrails-security/pktoF4VmiM8
Created rubygem-activeresource tracking bugs for this issue: Affects: epel-7 [bug 1838511] Affects: fedora-all [bug 1838510]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.