FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
5a016dd0-8aa8-490e-a596-55f4cc17e4efrails -- multiple vulnerabilities

Ruby on Rails blog:

Rails 4.2.5.2, 4.1.14.2, and 3.2.22.2 have been released! These contain the following important security fixes, and it is recommended that users upgrade as soon as possible.


Discovery 2016-02-29
Entry 2016-03-06
rubygem-actionpack
lt 3.2.22.2

rubygem-actionpack4
lt 4.2.5.2

rubygem-actionview
lt 4.2.5.2

rubygem-rails
lt 3.2.22.2

rubygem-rails4
lt 4.2.5.2

CVE-2016-2097
CVE-2016-2098
https://groups.google.com/d/msg/rubyonrails-security/ddY6HgqB2z4/we0RasMZIAAJ
https://groups.google.com/d/msg/rubyonrails-security/ly-IH-fxr_Q/WLoOhcMZIAAJ
http://weblog.rubyonrails.org/2016/2/29/Rails-4-2-5-2-4-1-14-2-3-2-22-2-have-been-released/
bb0ef21d-0e1b-461b-bc3d-9cba39948888rails -- multiple vulnerabilities

Ruby on Rails blog:

Rails 5.0.0.beta1.1, 4.2.5.1, 4.1.14.1, and 3.2.22.1 have been released! These contain important security fixes, and it is recommended that users upgrade as soon as possible.


Discovery 2016-01-25
Entry 2016-02-02
rubygem-actionpack
lt 3.2.22.1

rubygem-actionpack4
lt 4.2.5.1

rubygem-actionview
lt 4.2.5.1

rubygem-activemodel4
lt 4.2.5.1

rubygem-activerecord
lt 3.2.22.1

rubygem-activerecord4
lt 4.2.5.1

rubygem-rails
lt 3.2.22.1

rubygem-rails-html-sanitizer
lt 1.0.3

rubygem-rails4
lt 4.2.5.1

CVE-2015-7576
CVE-2015-7577
CVE-2015-7581
CVE-2016-0751
CVE-2016-0752
CVE-2016-0753
https://groups.google.com/d/msg/rubyonrails-security/ANv0HDHEC3k/mt7wNGxbFQAJ
https://groups.google.com/d/msg/rubyonrails-security/cawsWcQ6c8g/tegZtYdbFQAJ
https://groups.google.com/d/msg/rubyonrails-security/dthJ5wL69JE/YzPnFelbFQAJ
https://groups.google.com/d/msg/rubyonrails-security/9oLY_FCzvoc/w9oI9XxbFQAJ
https://groups.google.com/d/msg/rubyonrails-security/335P1DcLG00/OfB9_LhbFQAJ
https://groups.google.com/d/msg/rubyonrails-security/6jQVC1geukQ/8oYETcxbFQAJ
http://weblog.rubyonrails.org/2016/1/25/Rails-5-0-0-beta1-1-4-2-5-1-4-1-14-1-3-2-22-1-and-rails-html-sanitizer-1-0-3-have-been-released/
6a806960-3016-44ed-8575-8614a7cb57c7rails -- multiple vulnerabilities

Rails weblog:

Rails 3.2.16 and 4.0.2 have been released! These two releases contain important security fixes, so please upgrade as soon as possible! In order to make upgrading as smooth as possible, we've only included commits directly related to each security issue.

The security fixes in 3.2.16 are:

  • CVE-2013-4491
  • CVE-2013-6414
  • CVE-2013-6415
  • CVE-2013-6417

The security fixes in 4.0.2 are:

  • CVE-2013-4491
  • CVE-2013-6414
  • CVE-2013-6415
  • CVE-2013-6416
  • CVE-2013-6417

Discovery 2013-12-03
Entry 2013-12-08
Modified 2014-04-23
rubygem-actionmailer
lt 3.2.16

rubygem-actionpack
lt 3.2.16

rubygem-activemodel
lt 3.2.16

rubygem-activerecord
lt 3.2.16

rubygem-activeresource
lt 3.2.16

rubygem-activesupport
lt 3.2.16

rubygem-rails
lt 3.2.16

rubygem-railties
lt 3.2.16

rubygem-actionpack4
lt 4.0.2

rubygem-activesupport4
lt 4.0.2

CVE-2013-4491
CVE-2013-6414
CVE-2013-6415
CVE-2013-6416
CVE-2013-6417
http://weblog.rubyonrails.org/2013/12/3/Rails_3_2_16_and_4_0_2_have_been_released/