RubyGems package
ruby_parser
pkg:gem/ruby_parser
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2013-0162 | — | >= 2.0.2, < 3.1.2 | 3.1.2 | Mar 1, 2013 | The diff_pp function in lib/gauntlet_rubyparser.rb in the ruby_parser gem 3.1.1 and earlier for Ruby allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp. |
- CVE-2013-0162Mar 1, 2013affected >= 2.0.2, < 3.1.2fixed 3.1.2
The diff_pp function in lib/gauntlet_rubyparser.rb in the ruby_parser gem 3.1.1 and earlier for Ruby allows local users to overwrite arbitrary files via a symlink attack on a temporary file with a predictable name in /tmp.