You are here
Home > Preporuke > Sigurnosni nedostatak programskog paketa rubygem

Sigurnosni nedostatak programskog paketa rubygem

——————————————————————————–
Fedora Update Notification
FEDORA-2017-ca05b30e86
2017-12-12 13:48:05.815813
——————————————————————————–

Name        : rubygem-yard
Product     : Fedora 25
Version     : 0.8.7.6
Release     : 4.fc25
URL         : http://yardoc.org
Summary     : Documentation tool for consistent and usable documentation in Ruby
Description :
YARD is a documentation generation tool for the Ruby programming language.
It enables the user to generate consistent, usable documentation that can be
exported to a number of formats very easily, and also supports extending for
custom Ruby constructs such as custom class level definitions.

——————————————————————————–
Update Information:

Fix to directory traversal attacks (CVE-2017-17042).
——————————————————————————–
References:

  [ 1 ] Bug #1519065 – CVE-2017-17042 rubygem-yard: (lib/yard/core_ext/file.rb) is vulnerable to directory traversal attacks
        https://bugzilla.redhat.com/show_bug.cgi?id=1519065
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade rubygem-yard’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2017-c6c6e9beae
2017-12-12 12:25:26.724714
——————————————————————————–

Name : rubygem-yard
Product : Fedora 26
Version : 0.9.8
Release : 4.fc26
URL : http://yardoc.org
Summary : Documentation tool for consistent and usable documentation in Ruby
Description :
YARD is a documentation generation tool for the Ruby programming language.
It enables the user to generate consistent, usable documentation that can be
exported to a number of formats very easily, and also supports extending for
custom Ruby constructs such as custom class level definitions.

——————————————————————————–
Update Information:

Fix to directory traversal attacks (CVE-2017-17042).
——————————————————————————–
References:

[ 1 ] Bug #1519065 – CVE-2017-17042 rubygem-yard: (lib/yard/core_ext/file.rb) is vulnerable to directory traversal attacks
https://bugzilla.redhat.com/show_bug.cgi?id=1519065
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade rubygem-yard’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

——————————————————————————–
Fedora Update Notification
FEDORA-2017-386e856a4f
2017-12-12 10:01:38.492297
——————————————————————————–

Name : rubygem-yard
Product : Fedora 27
Version : 0.9.8
Release : 4.fc27
URL : http://yardoc.org
Summary : Documentation tool for consistent and usable documentation in Ruby
Description :
YARD is a documentation generation tool for the Ruby programming language.
It enables the user to generate consistent, usable documentation that can be
exported to a number of formats very easily, and also supports extending for
custom Ruby constructs such as custom class level definitions.

——————————————————————————–
Update Information:

Fix to directory traversal attacks (CVE-2017-17042).
——————————————————————————–
References:

[ 1 ] Bug #1519065 – CVE-2017-17042 rubygem-yard: (lib/yard/core_ext/file.rb) is vulnerable to directory traversal attacks
https://bugzilla.redhat.com/show_bug.cgi?id=1519065
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade rubygem-yard’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Top
More in Preporuke
Sigurnosni nedostatak programske biblioteke libvirt

Otkriven je sigurnosni nedostatak u programskoj biblioteci libvirt za operacijski sustav Fedora. Otkriveni nedostatak potencijalnim napadačima omogućuje zaobilaženje sigurnosnih ograničenja....

Close