VYPR

RubyGems package

backup_checksum

pkg:gem/backup_checksum

Vulnerabilities (1)

  • CVE-2014-4993HigJan 10, 2018
    affected <= 3.0.23

    (1) lib/backup/cli/utility.rb in the backup-agoddard gem 3.0.28 and (2) lib/backup/cli/utility.rb in the backup_checksum gem 3.0.23 for Ruby place credentials on the openssl command line, which allows local users to obtain sensitive information by listing the process.