VYPR

rpm package

opensuse/rubygem-bundler&distro=openSUSE Leap 15.5

pkg:rpm/opensuse/rubygem-bundler&distro=openSUSE%20Leap%2015.5

Vulnerabilities (1)

  • CVE-2021-43809Dec 8, 2021
    affected < 1.16.1-150000.3.6.1fixed 1.16.1-150000.3.6.1

    `Bundler` is a package for managing application dependencies in Ruby. In `bundler` versions before 2.2.33, when working with untrusted and apparently harmless `Gemfile`'s, it is not expected that they lead to execution of external code, unless that's explicit in the ruby code ins