ADVISORIES

• CVE-2014-4993
• OSVDB-108569

GEM

backup_checksum

PATCHED VERSIONS

None.

DESCRIPTION

backup_checksum Gem for Ruby contains a flaw in /lib/backup/cli/utility.rb that is triggered as the program displays password information in plaintext in the process list. This may allow a local attacker to gain access to password information.