FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-23 14:57:51 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
9db93f3d-c725-11ec-9618-000d3ac47524	Rails -- XSS vulnerabilities Ruby on Rails blog: This is an announcement to let you know that Rails 7.0.2.4, 6.1.5.1, 6.0.4.8, and 5.2.7.1 have been released! These are security releases so please update as soon as you can. Once again we've made these releases based on the last release tag, so hopefully upgrading will go smoothly. The releases address two vulnerabilities, CVE-2022-22577, and CVS-2022-27777. They are both XSS vulnerabilities, so please take a look at the forum posts to see how (or if) they might possibly impact your application. Discovery 2022-04-26 Entry 2022-04-30 rubygem-actionpack52 < 5.2.7.1 rubygem-actionpack60 < 6.0.4.8 rubygem-actionpack61 < 6.1.5.1 rubygem-actionpack70 < 7.0.2.4 rubygem-actionview52 < 5.2.7.1 rubygem-actionview60 < 6.0.4.8 rubygem-actionview61 < 6.1.5.1 rubygem-actionview70 < 7.0.2.4 CVE-2022-22577 CVE-2022-27777 https://rubyonrails.org/2022/4/26/Rails-7-0-2-4-6-1-5-1-6-0-4-8-and-5-2-7-1-have-been-released
7b630362-f468-11ea-a96c-08002728f74c	Rails -- Potential XSS vulnerability Ruby on Rails blog: Rails 5.2.4.4 and 6.0.3.3 have been released! These releases contain an important security fix, so please upgrade when you can. Both releases contain the following fix: [CVE-2020-15169] Potential XSS vulnerability in Action View Discovery 2020-09-09 Entry 2020-09-12 rubygem-actionview52 < 5.2.4.4 rubygem-actionview60 < 6.0.3.3 https://weblog.rubyonrails.org/2020/9/10/Rails-5-2-4-4-and-6-0-3-3-have-been-released/ https://groups.google.com/forum/#!topic/rubyonrails-security/b-C9kSGXYrc https://github.com/rails/rails/blob/5-2-stable/actionview/CHANGELOG.md https://github.com/rails/rails/blob/6-0-stable/actionview/CHANGELOG.md CVE-2020-15169

VuXML ID

Description

9db93f3d-c725-11ec-9618-000d3ac47524

Rails -- XSS vulnerabilities

Ruby on Rails blog:

This is an announcement to let you know that Rails 7.0.2.4, 6.1.5.1, 6.0.4.8, and 5.2.7.1 have been released!

These are security releases so please update as soon as you can. Once again we've made these releases based on the last release tag, so hopefully upgrading will go smoothly.

The releases address two vulnerabilities, CVE-2022-22577, and CVS-2022-27777. They are both XSS vulnerabilities, so please take a look at the forum posts to see how (or if) they might possibly impact your application.

Discovery 2022-04-26
Entry 2022-04-30
rubygem-actionpack52

< 5.2.7.1

rubygem-actionpack60

< 6.0.4.8

rubygem-actionpack61

< 6.1.5.1

rubygem-actionpack70

< 7.0.2.4

rubygem-actionview52

< 5.2.7.1

rubygem-actionview60

< 6.0.4.8

rubygem-actionview61

< 6.1.5.1

rubygem-actionview70

< 7.0.2.4

CVE-2022-22577
CVE-2022-27777
https://rubyonrails.org/2022/4/26/Rails-7-0-2-4-6-1-5-1-6-0-4-8-and-5-2-7-1-have-been-released

7b630362-f468-11ea-a96c-08002728f74c

Rails -- Potential XSS vulnerability

Ruby on Rails blog:

Rails 5.2.4.4 and 6.0.3.3 have been released! These releases contain an important security fix, so please upgrade when you can.

Both releases contain the following fix: [CVE-2020-15169] Potential XSS vulnerability in Action View

Discovery 2020-09-09
Entry 2020-09-12
rubygem-actionview52

< 5.2.4.4

rubygem-actionview60

< 6.0.3.3

https://weblog.rubyonrails.org/2020/9/10/Rails-5-2-4-4-and-6-0-3-3-have-been-released/
https://groups.google.com/forum/#!topic/rubyonrails-security/b-C9kSGXYrc
https://github.com/rails/rails/blob/5-2-stable/actionview/CHANGELOG.md
https://github.com/rails/rails/blob/6-0-stable/actionview/CHANGELOG.md
CVE-2020-15169