Sicherheit: Ausführen beliebiger Kommandos in ruby-ncurses - Pro-Linux

Name        : ruby-ncurses
Product     : Fedora 23
Version     : 1.3.1
Release     : 16.fc23
URL         : http://ncurses-ruby.berlios.de/
Summary     : A module for ruby applications for using ncurses interfaces
Description :
This ruby extension makes most functions, constants, and external variables
of the C library ncurses accessible from the Ruby programming language.

-------------------------------------------------------------------------------
-
Update Information:

  ruby-ncurses-1.3.1-16.fc23  - Fix Ruby 2.2 compatibility.   rubygem-
sup-0.21.0-3.fc23  - Relax rubygem-chronic dependency. - Temporary use ncurses,
until rubygem-ncursesw is in Fedora. - Small cleanup.
-------------------------------------------------------------------------------
-
References:

  [ 1 ] Bug #1024647 - CVE-2013-4479 rubygem-sup: command injection flaw in
 content type handling
        https://bugzilla.redhat.com/show_bug.cgi?id=1024647
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update ruby-ncurses' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-announce