all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Check your gems: RubyGems fixes unauthorized package takeover bug

Add to bookmarks
May 8, 2022, 8:59 p.m. | Ax Sharma

BleepingComputer www.bleepingcomputer.com

The RubyGems package repository has fixed a critical vulnerability that would allow anyone to unpublish ("yank") certain Ruby packages from the repository and republish their tainted or malicious versions with the same file names and version numbers. [...]

bug fixes gems package security takeover

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

CEO who sold fake Cisco devices to US military gets 6 years in prison an hour ago | www.bleepingcomputer.com
ceo cisco companies counterfeit +14
Bitwarden launches new MFA Authenticator app for iOS, Android 2 hours ago | www.bleepingcomputer.com
android android devices app authenticator +12
CISA urges software devs to weed out path traversal vulnerabilities 3 hours ago | www.bleepingcomputer.com
cisa companies fbi path +9
Police shuts down 12 fraud call centres, arrests 21 suspects 4 hours ago | www.bleepingcomputer.com
albania arrests bosnia bosnia and herzegovina +17
Microsoft warns of "Dirty Stream" attack impacting Android apps 7 hours ago | www.bleepingcomputer.com
android android apps application apps +17
REvil hacker behind Kaseya ransomware attack gets 13 years in prison 8 hours ago | www.bleepingcomputer.com
attack hacker kaseya kaseya ransomware attack +12
Microsoft won't fix Windows 0x80070643 errors, manual fix required 9 hours ago | www.bleepingcomputer.com
automated environment errors fix +5
Cybersecurity consultant arrested after allegedly extorting IT firm 9 hours ago | www.bleepingcomputer.com
arrested confidential consultant cybersecurity +5
HPE Aruba Networking fixes four critical RCE flaws in ArubaOS 1 day ago | www.bleepingcomputer.com
advisory april aruba arubaos +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Information Security Engineer, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

BaaN IV Techno-functional consultant-On-Balfour

@ Marlabs | Piscataway, US
View on infosec-jobs.com

Senior Security Analyst

@ BETSOL | Bengaluru, India
View on infosec-jobs.com

Security Operations Centre Operator

@ NEXTDC | West Footscray, Australia
View on infosec-jobs.com

Senior Network and Security Research Officer

@ University of Toronto | Toronto, ON, CA
View on infosec-jobs.com
View more jobs