Updated advisory posts against rubysec/ruby-advisory-db@80016d8

Author: jasnow

advisories/_posts/2012-03-01-CVE-2012-1099.md

@@ -16,10 +16,12 @@ advisory:
   title: 'CVE-2012-1099 rubygem-actionpack: XSS in the "select" helper'
   date: 2012-03-01
   description: |-
-    Cross-site scripting (XSS) vulnerability in actionpack/lib/action_view/helpers/form_options_helper.rb
-    in the select helper in Ruby on Rails 3.0.x before 3.0.12, 3.1.x before 3.1.4, and
-    3.2.x before 3.2.2 allows remote attackers to inject arbitrary web script or HTML
-    via vectors involving certain generation of OPTION elements within SELECT elements.
+    Cross-site scripting (XSS) vulnerability in
+    actionpack/lib/action_view/helpers/form_options_helper.rb in the select
+    helper in Ruby on Rails 3.0.x before 3.0.12, 3.1.x before 3.1.4, and
+    3.2.x before 3.2.2 allows remote attackers to inject arbitrary web
+    script or HTML via vectors involving certain generation of OPTION
+    elements within SELECT elements.
   cvss_v2: 4.3
   patched_versions:
   - "~> 3.0.12"

advisories/_posts/2015-03-24-CVE-2015-1828.md

@@ -13,8 +13,9 @@ advisory:
   title: HTTPS MitM vulnerability in http.rb
   date: 2015-03-24
   description: |-
-    http.rb failed to call the OpenSSL::SSL::SSLSocket#post_connection_check method to perform hostname verification.
-    Because of this, an attacker with a valid certificate but with a mismatched subject can perform a MitM attack.
+    http.rb failed to call the OpenSSL::SSL::SSLSocket#post_connection_check
+    method to perform hostname verification. Because of this, an attacker with
+    a valid certificate but with a mismatched subject can perform a MitM attack.
   cvss_v2: 5.0
   cvss_v3: 5.9
   patched_versions:

advisories/_posts/2015-06-16-CVE-2015-3224.md

@@ -12,13 +12,18 @@ advisory:
   title: IP whitelist bypass in Web Console
   date: 2015-06-16
   description: |-
-    Specially crafted remote requests can spoof their origin, bypassing the IP whitelist, in any environment where Web Console is enabled (development and test, by default).
+    Specially crafted remote requests can spoof their origin, bypassing the
+    IP whitelist, in any environment where Web Console is enabled
+    (development and test, by default).
 
-    Users whose application is only accessible from localhost (as is the default behaviour in Rails 4.2) are not affected, unless a local proxy is involved.
+    Users whose application is only accessible from localhost (as is the default
+    behaviour in Rails 4.2) are not affected, unless a local proxy is involved.
 
-    All affected users should either upgrade or use one of the work arounds immediately.
+    All affected users should either upgrade or use one of the work arounds
+    immediately.
 
-    To work around this issue, turn off web-console in all environments, by removing/commenting it from the application's Gemfile.
+    To work around this issue, turn off web-console in all environments,
+    by removing/commenting it from the application's Gemfile.
   patched_versions:
   - ">= 2.1.3"
 ---

advisories/_posts/2017-11-09-CVE-2017-0909.md

@@ -13,8 +13,9 @@ advisory:
   title: private_address_check Ruby Gem Blacklist Bypass privilege escalation
   date: 2017-11-09
   description: |-
-    The private_address_check ruby gem before 0.4.1 is vulnerable to a bypass due to an incomplete
-    blacklist of common private/local network addresses used to prevent server-side request forgery.
+    The private_address_check ruby gem before 0.4.1 is vulnerable to a bypass
+    due to an incomplete blacklist of common private/local network addresses
+    used to prevent server-side request forgery.
   cvss_v2: 7.5
   cvss_v3: 9.8
   patched_versions:

advisories/_posts/2019-08-21-CVE-2018-20975.md

@@ -12,7 +12,9 @@ advisory:
   url: https://github.com/fatfreecrm/fat_free_crm/commit/6d60bc8ed010c4eda05d6645c64849f415f68d65
   date: 2019-08-21
   title: fat_free_crm XSS via query parameter of tags_helper method
-  description: Fat Free CRM before 0.18.1 has XSS in the tags_helper in app/helpers/tags_helper.rb.
+  description: |-
+    Fat Free CRM before 0.18.1 has XSS in the tags_helper in
+    app/helpers/tags_helper.rb.
   cvss_v3: 6.1
   patched_versions:
   - ">= 0.18.1"

advisories/_posts/2021-07-12-CVE-2021-32740.md

@@ -13,10 +13,13 @@ advisory:
   date: 2021-07-12
   title: Regular Expression Denial of Service in Addressable templates
   description: |-
-    Within the URI template implementation in Addressable, a maliciously crafted template may result in uncontrolled resource consumption,
-    leading to denial of service when matched against a URI. In typical usage, templates would not normally be read from untrusted user input,
-    but nonetheless, no previous security advisory for Addressable has cautioned against doing this.
-    Users of the parsing capabilities in Addressable but not the URI template capabilities are unaffected.
+    Within the URI template implementation in Addressable, a maliciously
+    crafted template may result in uncontrolled resource consumption,
+    leading to denial of service when matched against a URI. In typical
+    usage, templates would not normally be read from untrusted user input,
+    but nonetheless, no previous security advisory for Addressable has
+    cautioned against doing this. Users of the parsing capabilities in
+    Addressable but not the URI template capabilities are unaffected.
   cvss_v3: 7.5
   unaffected_versions:
   - "< 2.3.0"

advisories/_posts/2022-05-24-CVE-2019-13118.md

@@ -13,9 +13,14 @@ advisory:
   title: libxslt Type Confusion vulnerability that affects Nokogiri
   date: 2022-05-24
   description: |-
-    In `numbers.c` in libxslt 1.1.33, a type holding grouping characters of an `xsl:number` instruction was too narrow and an invalid character/length combination could be passed to `xsltNumberFormatDecimal`, leading to a read of uninitialized stack data.
+    In `numbers.c` in libxslt 1.1.33, a type holding grouping characters of
+    an `xsl:number` instruction was too narrow and an invalid character/length
+    combination could be passed to `xsltNumberFormatDecimal`, leading to
+    a read of uninitialized stack data.
 
-    Nokogiri prior to version 1.10.5 used a vulnerable version of libxslt. Nokogiri 1.10.5 updated libxslt to version 1.1.34 to address this and other vulnerabilities in libxslt.
+    Nokogiri prior to version 1.10.5 used a vulnerable version of libxslt.
+    Nokogiri 1.10.5 updated libxslt to version 1.1.34 to address this
+    and other vulnerabilities in libxslt.
   cvss_v3: 7.5
   patched_versions:
   - ">= 1.10.5"

advisories/_posts/2022-05-24-CVE-2021-3517.md

@@ -12,9 +12,17 @@ advisory:
   title: Nokogiri contains libxml Out-of-bounds Write vulnerability
   date: 2022-05-24
   description: |-
-    There is a flaw in the xml entity encoding functionality of libxml2 in versions before 2.9.11. An attacker who is able to supply a crafted file to be processed by an application linked with the affected functionality of libxml2 could trigger an out-of-bounds read. The most likely impact of this flaw is to application availability, with some potential impact to confidentiality and integrity if an attacker is able to use memory information to further exploit the application.
+    There is a flaw in the xml entity encoding functionality of libxml2 in
+    versions before 2.9.11. An attacker who is able to supply a crafted
+    file to be processed by an application linked with the affected
+    functionality of libxml2 could trigger an out-of-bounds read. The
+    most likely impact of this flaw is to application availability, with
+    some potential impact to confidentiality and integrity if an attacker
+    is able to use memory information to further exploit the application.
 
-    Nokogiri prior to version 1.11.4 used a vulnerable version of libxml2. Nokogiri 1.11.4 updated libxml2 to version 2.9.11 to address this and other vulnerabilities in libxml2.
+    Nokogiri prior to version 1.11.4 used a vulnerable version of libxml2.
+    Nokogiri 1.11.4 updated libxml2 to version 2.9.11 to address this and
+    other vulnerabilities in libxml2.
   cvss_v3: 8.6
   patched_versions:
   - ">= 1.11.4"