CVE-2013-6414
07.12.2013, 00:55
actionpack/lib/action_view/lookup_context.rb in Action View in Ruby on Rails 3.x before 3.2.16 and 4.x before 4.0.2 allows remote attackers to cause a denial of service (memory consumption) via a header containing an invalid MIME type that leads to excessive caching.Enginsight
| Vendor | Product | Version |
|---|---|---|
| rubyonrails | rails | 𝑥 ≤ 4.0.1 |
| rubyonrails | rails | 4.0.0 |
| rubyonrails | rails | 4.0.0:beta |
| rubyonrails | rails | 4.0.0:rc1 |
| rubyonrails | rails | 4.0.0:rc2 |
| rubyonrails | rails | 4.0.1:rc1 |
| rubyonrails | rails | 3.0.0 |
| rubyonrails | rails | 3.0.0:beta |
| rubyonrails | rails | 3.0.0:beta2 |
| rubyonrails | rails | 3.0.0:beta3 |
| rubyonrails | rails | 3.0.0:beta4 |
| rubyonrails | rails | 3.0.0:rc |
| rubyonrails | rails | 3.0.0:rc2 |
| rubyonrails | rails | 3.0.1 |
| rubyonrails | rails | 3.0.1:pre |
| rubyonrails | rails | 3.0.2 |
| rubyonrails | rails | 3.0.2:pre |
| rubyonrails | rails | 3.0.3 |
| rubyonrails | rails | 3.0.4:rc1 |
| rubyonrails | rails | 3.0.5 |
| rubyonrails | rails | 3.0.5:rc1 |
| rubyonrails | rails | 3.0.6 |
| rubyonrails | rails | 3.0.6:rc1 |
| rubyonrails | rails | 3.0.6:rc2 |
| rubyonrails | rails | 3.0.7 |
| rubyonrails | rails | 3.0.7:rc1 |
| rubyonrails | rails | 3.0.7:rc2 |
| rubyonrails | rails | 3.0.8 |
| rubyonrails | rails | 3.0.8:rc1 |
| rubyonrails | rails | 3.0.8:rc2 |
| rubyonrails | rails | 3.0.8:rc3 |
| rubyonrails | rails | 3.0.8:rc4 |
| rubyonrails | rails | 3.0.9 |
| rubyonrails | rails | 3.0.9:rc1 |
| rubyonrails | rails | 3.0.9:rc2 |
| rubyonrails | rails | 3.0.9:rc3 |
| rubyonrails | rails | 3.0.9:rc4 |
| rubyonrails | rails | 3.0.9:rc5 |
| rubyonrails | rails | 3.0.10 |
| rubyonrails | rails | 3.0.10:rc1 |
| rubyonrails | rails | 3.0.11 |
| rubyonrails | rails | 3.0.12 |
| rubyonrails | rails | 3.0.12:rc1 |
| rubyonrails | rails | 3.0.13 |
| rubyonrails | rails | 3.0.13:rc1 |
| rubyonrails | rails | 3.0.14 |
| rubyonrails | rails | 3.0.16 |
| rubyonrails | rails | 3.0.17 |
| rubyonrails | rails | 3.0.18 |
| rubyonrails | rails | 3.0.19 |
| rubyonrails | rails | 3.0.20 |
| rubyonrails | rails | 3.1.0 |
| rubyonrails | rails | 3.1.0:beta1 |
| rubyonrails | rails | 3.1.0:rc1 |
| rubyonrails | rails | 3.1.0:rc2 |
| rubyonrails | rails | 3.1.0:rc3 |
| rubyonrails | rails | 3.1.0:rc4 |
| rubyonrails | rails | 3.1.0:rc5 |
| rubyonrails | rails | 3.1.0:rc6 |
| rubyonrails | rails | 3.1.0:rc7 |
| rubyonrails | rails | 3.1.0:rc8 |
| rubyonrails | rails | 3.1.1 |
| rubyonrails | rails | 3.1.1:rc1 |
| rubyonrails | rails | 3.1.1:rc2 |
| rubyonrails | rails | 3.1.1:rc3 |
| rubyonrails | rails | 3.1.2 |
| rubyonrails | rails | 3.1.2:rc1 |
| rubyonrails | rails | 3.1.2:rc2 |
| rubyonrails | rails | 3.1.3 |
| rubyonrails | rails | 3.1.4 |
| rubyonrails | rails | 3.1.4:rc1 |
| rubyonrails | rails | 3.1.5 |
| rubyonrails | rails | 3.1.5:rc1 |
| rubyonrails | rails | 3.1.6 |
| rubyonrails | rails | 3.1.7 |
| rubyonrails | rails | 3.1.8 |
| rubyonrails | rails | 3.1.9 |
| rubyonrails | rails | 3.1.10 |
| rubyonrails | rails | 3.2.0 |
| rubyonrails | rails | 3.2.0:rc1 |
| rubyonrails | rails | 3.2.0:rc2 |
| rubyonrails | rails | 3.2.1 |
| rubyonrails | rails | 3.2.2 |
| rubyonrails | rails | 3.2.2:rc1 |
| rubyonrails | rails | 3.2.3 |
| rubyonrails | rails | 3.2.3:rc1 |
| rubyonrails | rails | 3.2.3:rc2 |
| rubyonrails | rails | 3.2.4 |
| rubyonrails | rails | 3.2.4:rc1 |
| rubyonrails | rails | 3.2.5 |
| rubyonrails | rails | 3.2.6 |
| rubyonrails | rails | 3.2.7 |
| rubyonrails | rails | 3.2.8 |
| rubyonrails | rails | 3.2.9 |
| rubyonrails | rails | 3.2.10 |
| rubyonrails | rails | 3.2.11 |
| rubyonrails | rails | 3.2.12 |
| rubyonrails | rails | 3.2.13 |
| rubyonrails | rails | 3.2.13:rc1 |
| rubyonrails | rails | 3.2.13:rc2 |
| rubyonrails | ruby_on_rails | 𝑥 ≤ 3.2.15 |
| rubyonrails | ruby_on_rails | 3.0.4 |
| rubyonrails | ruby_on_rails | 3.1.11 |
| rubyonrails | ruby_on_rails | 3.2.14 |
| rubyonrails | ruby_on_rails | 3.2.14:rc1 |
| rubyonrails | ruby_on_rails | 3.2.14:rc2 |
| rubyonrails | ruby_on_rails | 3.2.15:rc1 |
| rubyonrails | ruby_on_rails | 3.2.15:rc2 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| rails |
| ||||||||||||||||||||||||||||
| ruby-actionpack-2.3 |
| ||||||||||||||||||||||||||||
| ruby-actionpack-3.2 |
| ||||||||||||||||||||||||||||
| ruby-activerecord-3.2 |
| ||||||||||||||||||||||||||||
| ruby-activesupport-3.2 |
| ||||||||||||||||||||||||||||
| ruby-rails-2.3 |
| ||||||||||||||||||||||||||||
| ruby-rails-3.2 |
|
Common Weakness Enumeration
References