Skip to content

Commit

Permalink
Fix CVE-2018-7212 to refer to rack-protection with correct fix versio…
Browse files Browse the repository at this point in the history 
…ns (#331)

* Fix CVE-2018-7212 to refer to rack-protection with correct fix versions

* Fix typo in rack-protection
  • Loading branch information
@metcalf @reedloden
metcalf authored and reedloden committed Feb 28, 2018
1 parent 5fa3cc2 commit 3f5830b
Showing 1 changed file with 4 additions and 3 deletions.
7 changes: 4 additions & 3 deletions gems/sinatra/CVE-2018-7212.yml → gems/rack-protection/CVE-2018-7212.yml
View file
@@ -1,11 +1,12 @@
---
gem: sinatra
gem: rack-protection
cve: 2018-7212
url: https://github.com/sinatra/sinatra/pull/1379
title: Path traversal is possible via backslash characters on Windows.
date: 2018-02-18
description: |
An issue was discovered in Sinatra 2.x before 2.0.1 on Windows. Path traversal
An issue was discovered in rack-protection 2.x before 2.0.1 on Windows. Path traversal
is possible via backslash characters.
patched_versions:
- ">= 2.0.1"
- ">= 2.0.1"
- "~> 1.5.4"

0 comments on commit 3f5830b

Please sign in to comment.