DOCUMENTATION

Views

Search

Toolbox

Advisories:rPSA-2008-0295

From rPath Wiki

Jump to: navigation, search

rPath Security Advisory 2008-0295-1

Published: 2008-10-16

Products

rPath Appliance Platform Linux Service 1
rPath Appliance Platform Linux Service 2
rPath Linux 1
rPath Linux 2

Rating

Major

Exposure Level Classification

Remote User Deterministic Vulnerability

Updated Versions

rails=conary.rpath.com@rpl:1/1.2.5-2.3-1
rails=conary.rpath.com@rpl:2/1.2.5-5.1-1

rPath Issue Tracking System

RPL-2832

References

CVE-2008-4094

Description

Previous versions of the rails package are vulnerable to a sql

injection attack where users can inject sql statements where

certain values are not sanitized.

Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html

Retrieved from "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0295"

Categories: Support Issue | Advisories