FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
ce6db19b-976e-11ea-93c4-08002728f74cRails -- remote code execution vulnerability

Ruby on Rails blog:

Due to an unfortunate oversight, Rails 4.2.11.2 has a missing constant error. To address this Rails 4.2.11.3 has been released.

The original announcement for CVE-2020-8163 has a follow-up message with an updated patch if you’re unable to use the gems.


Discovery 2020-05-15
Entry 2020-05-16
rubygem-actionview4
lt 4.2.11.2

https://weblog.rubyonrails.org/2020/5/16/rails-4-2-11-3-has-been-released/
https://groups.google.com/forum/#!topic/rubyonrails-security/hWuKcHyoKh0
CVE-2020-8163