Information on source package ruby-passenger

Available versions

ReleaseVersion
jessie4.0.53-1+deb8u1

Open issues

BugjessieDescription
CVE-2017-16355vulnerable (no DSA)In agent/Core/SpawningKit/Spawner.h in Phusion Passenger 5.1.10 (fixed ...

Resolved issues

BugDescription
CVE-2018-12615An issue was discovered in switchGroup() in agent/ExecHelper/ExecHelpe ...
CVE-2018-12029A race condition in the nginx module in Phusion Passenger 3.x through ...
CVE-2018-12028An Incorrect Access Control vulnerability in SpawningKit in Phusion Pa ...
CVE-2018-12027An Insecure Permissions vulnerability in SpawningKit in Phusion Passen ...
CVE-2018-12026During the spawning of a malicious Passenger-managed application, Spaw ...
CVE-2015-7519agent/Core/Controller/SendRequest.cpp in Phusion Passenger before 4.0. ...
CVE-2014-1832Phusion Passenger 4.0.37 allows local users to write to certain files ...
CVE-2014-1831Phusion Passenger before 4.0.37 allows local users to write to certain ...
CVE-2013-4136ext/common/ServerInstanceDir.h in Phusion Passenger gem before 4.0.6 f ...
CVE-2013-2119Phusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby al ...
CVE-2012-6135RubyGems passenger 4.0.0 betas 1 and 2 allows remote attackers to dele ...

Security announcements

DSA / DLADescription
DLA-1399-1ruby-passenger - security update
ELA-8-1ruby-passenger - security update
Search for package or bug name: Reporting problems