Vulnerability Manager Plus

(CESA-2015:2180) Moderate: rubygem-bundler and rubygem-thor security, bug fix, and enhancement update rubygem-bundler-1.7.8-3.el7.noarch.rpm

Risk Information

Base Score

9.8

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

0.498%

CVE Information

Source CVE
CVE-2013-0334

Associated CVE
CVE-2013-0334

Patch Details

No records found

References

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
http://bundler.io/blog/2014/08/14/bundler-may-install-gems-from-a-different-source-than-expected-cve-2013-0334.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/140609.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/140654.html
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/140655.html
http://lists.opensuse.org/opensuse-updates/2015-03/msg00092.html
http://www.securityfocus.com/bid/70099
https://security.gentoo.org/glsa/201609-02