Tag
terminal-injection
Safeguard articles tagged "terminal-injection" — guides, analysis, and best practices for software supply chain and application security.
2 articles
Open Source Security
RubyGems Escape Sequence Injection via Gem Name Output (C...
A look at CVE-2019-8321, the RubyGems escape sequence injection flaw in gem CLI output: affected versions, severity, and how to remediate it.
Dec 4, 20258 min read
Open Source Security
RubyGems Escape Sequence Injection via Unpack API (CVE-20...
CVE-2019-8325 lets a malicious RubyGems package inject terminal escape sequences via the unpack API. Here's the impact, affected versions, and how to remediate it.
Dec 3, 20258 min read