UbuntuUpdates.org

Package "rake"

Name: rake

Description:

ruby make-like utility

Latest version: 12.3.1-1ubuntu0.1
Release: bionic (18.04)
Level: security
Repository: main
Homepage: https://github.com/jimweirich/rake

Links


Download "rake"


Other versions of "rake" in Bionic

Repository Area Version
base main 12.3.1-1
updates main 12.3.1-1ubuntu0.1

Changelog

Version: 12.3.1-1ubuntu0.1 2020-03-03 18:07:19 UTC

  rake (12.3.1-1ubuntu0.1) bionic-security; urgency=medium

  * SECURITY UPDATE: OS command injection
    - debian/patches/CVE-2020-8130.patch: use File.open explicitly
      lib/rake/file_list.rb.
    - CVE-2020-8130

 -- <email address hidden> (Leonidas S. Barbosa) Tue, 03 Mar 2020 10:44:04 -0300

CVE-2020-8130 There is an OS command injection vulnerability in Ruby Rake < 12.3.3 in Rake::FileList when supplying a filename that begins with the pipe character



About   -   Send Feedback to @ubuntu_updates