RubyGems Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2017-0899)
Description
RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications that include terminal escape characters. Printing the gem specification would execute terminal escape sequences.