Project

General

Profile

Bug #27154

bump rubygem net-ldap due to CVE-2017-17718

Added by Ohad Levy 5 months ago. Updated 5 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Category:
Packaging
Target version:
-
Difficulty:
Triaged:
No
Bugzilla link:
Fixed in Releases:
Found in Releases:

Associated revisions

Revision d06c7e56 (diff)
Added by Ohad Levy 5 months ago

fixes #27154 - bump net-ldap

CVE-2017-17718 More information
moderate severity
Vulnerable versions: < 0.16.0
Patched version: 0.16.0
The Net::LDAP (aka net-ldap) gem before 0.16.0 for Ruby has Missing SSL Certificate Validation.

History

#1 Updated by The Foreman Bot 5 months ago

  • Assignee set to Ohad Levy
  • Status changed from New to Ready For Testing
  • Pull request https://github.com/theforeman/foreman/pull/6860 added

#2 Updated by Tomer Brisker 5 months ago

  • Category set to Packaging
  • Fixed in Releases 1.23.0 added

#3 Updated by Ohad Levy 5 months ago

  • Status changed from Ready For Testing to Closed

Also available in: Atom PDF