SPECIAL TOPICS
  1. You are here:Home
  2. Articles
  3. cve-2019-15224-version-1-6-13-published-with-malicious-backdoor

[CVE-2019-15224] Version 1.6.13 published with malicious backdoor.

  • 22/08/2019
  • 2.423

On August 14, attackers published a series of rest-client versions from 1.6.10 to 1.6.13 using the credentials of a rest-client maintainer whose RubyGems.org account was compromised. The affected versions were downloaded a small number of times (~1000).On August 19, @juskoljo observed the malicious gem version and created this issue. Later that day, the RubyGems security team yanked the offending gem version and locked the affected maintainer'saccount. Several other gems were similarly affected.https://github.com/rubygems/rubygems.org/wiki/Gems-yanked-and-accounts-locked.
[CVE-2019-15224] Version 1.6.13 published with malicious backdoor. #ruby #rubydeveloper #rubyonrails https://rubyonrails.ba/single/cve-2019-15224-version-1-6-13-published-with-malicious-backdoor

RubyOnRails.BA

If you think that this shoudn't be here on the site, please contact us and we will remove it.

Read more
previous article

Background Processing with Rails, Redis and Sidekiq

share this post
  • linkedin rubyonrails.ba
  • twitter rubyonrails.ba
  • facebook rubyonrails.ba
next article

Speeding up Initial Rendering of Rails Pages with render_async.

quiz.rubyonrails.ba
blog.rubyonrails.ba
Nezir Zahirovic

Contractor Ruby On Rails (8+ years) / MCPD .Net / C# / Asp.Net / CSS / SQL / (11 years)

related articles

Popular Post