Updated advisory posts against rubysec/ruby-advisory-db@8759445

RubySec CI · RubySec CI · commit 395ee75f2b17 · 2017-02-21T18:51:45.000Z
diff --git a/advisories/_posts/2015-12-11-CVE-2015-8968.md b/advisories/_posts/2015-12-11-CVE-2015-8968.md
@@ -0,0 +1,29 @@
+---
+layout: advisory
+title: 'CVE-2015-8968 (git-fastclone): git-fastclone permits arbitrary shell command
+  execution from .gitmodules'
+comments: false
+categories:
+- git-fastclone
+advisory:
+  gem: git-fastclone
+  cve: 2015-8968
+  url: https://hackerone.com/reports/104465
+  title: git-fastclone permits arbitrary shell command execution from .gitmodules
+  date: 2015-12-11
+  description: |
+    Git allows executing arbitrary shell commands using git-remote-ext via a
+    remote URLs. Normally git never requests URLs that the user doesn't
+    specifically request, so this is not a serious security concern. However,
+    submodules did allow the remote repository to specify what URL to clone
+    from.
+
+    If an attacker can instruct a user to run a recursive clone from a
+    repository they control, they can get a client to run an arbitrary shell
+    command. Alternately, if an attacker can MITM an unencrypted git clone,
+    they could exploit this. The ext command will be run if the repository is
+    recursively cloned or if submodules are updated. This attack works when
+    cloning both local and remote repositories.
+  patched_versions:
+  - ">= 1.0.1"
+---
diff --git a/advisories/_posts/2015-12-15-CVE-2015-8969.md b/advisories/_posts/2015-12-15-CVE-2015-8969.md
@@ -0,0 +1,21 @@
+---
+layout: advisory
+title: 'CVE-2015-8969 (git-fastclone): git-fastclone Shell Metacharacter Injection
+  Arbitrary Command Execution'
+comments: false
+categories:
+- git-fastclone
+advisory:
+  gem: git-fastclone
+  cve: 2015-8969
+  url: https://hackerone.com/reports/105190
+  title: git-fastclone Shell Metacharacter Injection Arbitrary Command Execution
+  date: 2015-12-15
+  description: |
+    git-fastclone before 1.0.5 passes user modifiable strings directly to a shell
+    command. An attacker can execute malicious commands by modifying the strings
+    that are passed as arguments to "cd " and "git clone " commands in the
+    library.
+  patched_versions:
+  - ">= 1.0.5"
+---
diff --git a/advisories/_posts/2016-04-13-CVE-2016-10193.md b/advisories/_posts/2016-04-13-CVE-2016-10193.md
@@ -0,0 +1,20 @@
+---
+layout: advisory
+title: 'CVE-2016-10193 (espeak-ruby): espeak-ruby Gem for Ruby Arbitrary Command Execution'
+comments: false
+categories:
+- espeak-ruby
+advisory:
+  cve: 2016-10193
+  gem: espeak-ruby
+  url: https://github.com/dejan/espeak-ruby/issues/7
+  title: espeak-ruby Gem for Ruby Arbitrary Command Execution
+  date: 2016-04-13
+  description: |
+    espeak-ruby passes user modifiable strings directly to a shell
+    command. An attacker can execute malicious commands by modifying
+    the strings that are passed as arguments to the speak, save, bytes
+    and bytes_wav methods in the lib/espeak/speech.rb library.
+  patched_versions:
+  - ">= 1.0.3"
+---
diff --git a/advisories/_posts/2016-04-23-CVE-2016-10194.md b/advisories/_posts/2016-04-23-CVE-2016-10194.md
@@ -0,0 +1,19 @@
+---
+layout: advisory
+title: 'CVE-2016-10194 (festivaltts4r): festivaltts4r Gem for Ruby Arbitrary Command
+  Execution'
+comments: false
+categories:
+- festivaltts4r
+advisory:
+  cve: 2016-10194
+  gem: festivaltts4r
+  url: https://github.com/spejman/festivaltts4r/issues/1
+  title: festivaltts4r Gem for Ruby Arbitrary Command Execution
+  date: 2016-04-23
+  description: |
+    festivaltts4r passes user modifiable strings directly to a shell
+    command. An attacker can execute malicious commands by modifying
+    the strings that are passed as arguments to the to_speech and
+    and to_mp3 methods in lib/festivaltts4r/festival4r.rb library.
+---
diff --git a/advisories/_posts/2016-08-22-CVE-2016-10173.md b/advisories/_posts/2016-08-22-CVE-2016-10173.md
@@ -19,5 +19,5 @@ advisory:
 
     Credit: ecneladis
   patched_versions:
-  - ">= 0.6"
+  - ">= 0.6.1"
 ---
