Ubuntu
ruby-zip package

  1. Bug #1669894
  2. Comment #3

Comment 3 for bug 1669894

Revision history for this message
Tyler Hicks (tyhicks) wrote :

This bug was fixed in the package ruby-zip - 1.2.0-1.1

---------------
ruby-zip (1.2.0-1.1) unstable; urgency=medium

  * Non-maintainer upload.
  * CVE-2017-5946: directory traversal vulnerability in Zip::File component
    (Closes: #856269)

 -- Salvatore Bonaccorso <email address hidden> Mon, 27 Feb 2017 17:38:59 +0100