rpm package
opensuse/ruby3.2-rubygem-activesupport-7.0&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/ruby3.2-rubygem-activesupport-7.0&distro=openSUSE%20Tumbleweed
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2023-38037 | Med | 5.5 | < 7.0.8-1.1 | 7.0.8-1.1 | Jan 9, 2025 | ActiveSupport::EncryptedFile writes contents that will be encrypted to a temporary file. The temporary file's permissions are defaulted to the user's current `umask` settings, meaning that it's possible for other users on the same system to read the contents of the temporary |
- affected < 7.0.8-1.1fixed 7.0.8-1.1
ActiveSupport::EncryptedFile writes contents that will be encrypted to a temporary file. The temporary file's permissions are defaulted to the user's current `umask` settings, meaning that it's possible for other users on the same system to read the contents of the temporary