RHSA-2013:0728
Advisory lineage Upstream: 1 Downstream: 0
Upstream
Published: 15 Sept 2024, 20:33
Last modified:23 Mar 2026, 04:45
Vulnerability Summary
Overall Risk (default)
low
22/100 CVSS Score
5.4 MEDIUM
3.1 (osv_red_hat)
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
15 Sept 2024, 20:33
Published
Vulnerability first disclosed
23 Mar 2026, 04:45
Last Modified
Vulnerability information updated
Description
Red Hat Security Advisory: rubygem packages security update
CVSS Metrics
- v3.1•MEDIUM•Score: 5.4CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Affected Systems
- redhat•ruby193-rubygem-activesupport
< 1:3.2.8-4.el6
- redhat•ruby193-rubygem-bcrypt-ruby
< 0:3.0.1-7.el6
- redhat•ruby193-rubygem-bcrypt-ruby-debuginfo
< 0:3.0.1-7.el6
- redhat•ruby193-rubygem-bson
< 0:1.5.2-6.el6op
- redhat•ruby193-rubygem-chunky_png
< 0:1.2.6-3.el6op
- redhat•ruby193-rubygem-ci_reporter
< 0:1.7.2-4.el6op
- redhat•ruby193-rubygem-compass
< 0:0.12.2-4.el6op
- redhat•ruby193-rubygem-fastthread
< 0:1.0.7-7.el6op
- redhat•ruby193-rubygem-fastthread-debuginfo
< 0:1.0.7-7.el6op
- redhat•ruby193-rubygem-haml
< 0:3.1.7-3.el6op
- redhat•ruby193-rubygem-http_connection
< 0:1.4.1-7.el6
- redhat•ruby193-rubygem-rack
< 1:1.4.1-5.el6
- redhat•ruby193-rubygem-rack-test
< 0:0.6.1-3.el6
- redhat•ruby193-rubygem-rspec
< 0:2.11.0-2.el6
- redhat•ruby193-rubygem-treetop
< 0:1.4.10-6.el6
- redhat•ruby193-rubygem-xml-simple
< 0:1.0.12-10.el6op
References (8)
- https://access.redhat.com/errata/RHSA-2013:0728
- https://access.redhat.com/security/updates/classification/#moderate
- https://bugzilla.redhat.com/show_bug.cgi?id=907820
- https://security.access.redhat.com/data/csaf/v2/advisories/2013/rhsa-2013_0728.json
- https://access.redhat.com/security/cve/CVE-2013-0256
- https://www.cve.org/CVERecord?id=CVE-2013-0256
- https://nvd.nist.gov/vuln/detail/CVE-2013-0256
- http://www.ruby-lang.org/en/news/2013/02/06/rdoc-xss-cve-2013-0256/