FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-03-29 07:54:42 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
76a07f31-a860-11eb-8ddb-001b217b3468Carrierwave -- Multiple vulnerabilities

Community reports:

Fix Code Injection vulnerability in CarrierWave::RMagick

Fix SSRF vulnerability in the remote file download feature


Discovery 2021-02-08
Entry 2021-04-28
rubygem-carrierwave
< 1.3.2

https://github.com/carrierwaveuploader/carrierwave/blob/master/CHANGELOG.md#132---2021-02-08
CVE-2021-21288
CVE-2021-21305