Fix import preview and vulnerabilities [1.9] #576

senid231 · 2019-12-11T07:58:47Z

fix import preview policy and redirect
fix vulnerabilities

Name: loofah
Version: 2.2.3
Advisory: CVE-2019-15587
Criticality: Unknown
URL: flavorjones/loofah#171
Title: Loofah XSS Vulnerability
Solution: upgrade to >= 2.3.1

Name: nokogiri
Version: 1.10.4
Advisory: CVE-2019-13117
Criticality: Unknown
URL: sparklemotion/nokogiri#1943
Title: Nokogiri gem, via libxslt, is affected by multiple vulnerabilities
Solution: upgrade to >= 1.10.5

Name: puma
Version: 3.12.1
Advisory: CVE-2019-16770
Criticality: High
URL: GHSA-7xx3-m584-x994
Title: Keepalive thread overload/DoS in puma
Solution: upgrade to ~> 3.12.2, >= 4.3.1

* fix policy * fix redirect

Name: loofah Version: 2.2.3 Advisory: CVE-2019-15587 Criticality: Unknown URL: flavorjones/loofah#171 Title: Loofah XSS Vulnerability Solution: upgrade to >= 2.3.1 Name: nokogiri Version: 1.10.4 Advisory: CVE-2019-13117 Criticality: Unknown URL: sparklemotion/nokogiri#1943 Title: Nokogiri gem, via libxslt, is affected by multiple vulnerabilities Solution: upgrade to >= 1.10.5 Name: puma Version: 3.12.1 Advisory: CVE-2019-16770 Criticality: High URL: GHSA-7xx3-m584-x994 Title: Keepalive thread overload/DoS in puma Solution: upgrade to ~> 3.12.2, >= 4.3.1

senid231 added 2 commits December 11, 2019 09:53

fix import preview

fad3abb

* fix policy * fix redirect

senid231 requested a review from dmitry-sinina December 11, 2019 07:58

senid231 self-assigned this Dec 11, 2019

dmitry-sinina merged commit 050bbbc into yeti-switch:1.9 Dec 14, 2019

senid231 deleted the fix-import-preview-1.9 branch February 17, 2020 11:41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Fix import preview and vulnerabilities [1.9] #576

Fix import preview and vulnerabilities [1.9] #576

senid231 commented Dec 11, 2019

Fix import preview and vulnerabilities [1.9] #576

Fix import preview and vulnerabilities [1.9] #576

Conversation

senid231 commented Dec 11, 2019