Candidate: CVE-2013-6459
PublicDate: 2013-12-31 16:04:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6459
 https://github.com/mislav/will_paginate/releases/tag/v3.0.5
 http://secunia.com/advisories/56180
Description:
 Cross-site scripting (XSS) vulnerability in the will_paginate gem before
 3.0.5 for Ruby allows remote attackers to inject arbitrary web script or
 HTML via vectors involving generated pagination links.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=733209
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_libwill-paginate-ruby:
upstream_libwill-paginate-ruby: needs-triage
lucid_libwill-paginate-ruby: ignored (reached end-of-life)
precise_libwill-paginate-ruby: DNE
precise/esm_libwill-paginate-ruby: DNE
quantal_libwill-paginate-ruby: DNE
raring_libwill-paginate-ruby: DNE
saucy_libwill-paginate-ruby: DNE
trusty_libwill-paginate-ruby: DNE
trusty/esm_libwill-paginate-ruby: DNE
utopic_libwill-paginate-ruby: DNE
vivid_libwill-paginate-ruby: DNE
vivid/stable-phone-overlay_libwill-paginate-ruby: DNE
vivid/ubuntu-core_libwill-paginate-ruby: DNE
wily_libwill-paginate-ruby: DNE
xenial_libwill-paginate-ruby: DNE
yakkety_libwill-paginate-ruby: DNE
zesty_libwill-paginate-ruby: DNE
devel_libwill-paginate-ruby: DNE

Patches_ruby-will-paginate:
upstream_ruby-will-paginate: released (3.0.5-1)
lucid_ruby-will-paginate: DNE
precise_ruby-will-paginate: ignored (reached end-of-life)
precise/esm_ruby-will-paginate: DNE (precise was needed)
quantal_ruby-will-paginate: ignored (reached end-of-life)
raring_ruby-will-paginate: ignored (reached end-of-life)
saucy_ruby-will-paginate: ignored (reached end-of-life)
trusty_ruby-will-paginate: not-affected (3.0.5-1)
trusty/esm_ruby-will-paginate: DNE (trusty was not-affected [3.0.5-1])
utopic_ruby-will-paginate: not-affected (3.0.5-1)
vivid_ruby-will-paginate: not-affected (3.0.5-1)
vivid/stable-phone-overlay_ruby-will-paginate: DNE
vivid/ubuntu-core_ruby-will-paginate: DNE
wily_ruby-will-paginate: not-affected (3.0.5-1)
xenial_ruby-will-paginate: not-affected (3.0.5-1)
yakkety_ruby-will-paginate: not-affected (3.0.5-1)
zesty_ruby-will-paginate: not-affected (3.0.5-1)
devel_ruby-will-paginate: not-affected (3.0.5-1)