Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2018-16396

Опубликовано: 16 нояб. 2018
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 8.1

Описание

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats.

РелизСтатусПримечание
bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [1.9.3.484-2ubuntu1.13]]
precise/esm

DNE

trusty

released

1.9.3.484-2ubuntu1.13
trusty/esm

DNE

trusty was released [1.9.3.484-2ubuntu1.13]
upstream

needs-triage

xenial

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

trusty/esm was DNE [trusty was released [2.0.0.484-1ubuntu2.11]]
precise/esm

DNE

trusty

released

2.0.0.484-1ubuntu2.11
trusty/esm

DNE

trusty was released [2.0.0.484-1ubuntu2.11]
upstream

needs-triage

xenial

DNE

Показывать по

РелизСтатусПримечание
bionic

DNE

cosmic

DNE

devel

DNE

esm-infra-legacy/trusty

DNE

esm-infra/xenial

released

2.3.1-2~16.04.11
precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

needs-triage

xenial

released

2.3.1-2~16.04.11

Показывать по

РелизСтатусПримечание
bionic

released

2.5.1-1ubuntu1.1
cosmic

released

2.5.1-5ubuntu4.1
devel

released

2.5.1-6ubuntu3
esm-infra-legacy/trusty

DNE

esm-infra/bionic

released

2.5.1-1ubuntu1.1
precise/esm

DNE

trusty

DNE

trusty/esm

DNE

upstream

needs-triage

xenial

DNE

Показывать по

Ссылки на источники

EPSS

Процентиль: 87%
0.03288
Низкий

6.8 Medium

CVSS2

8.1 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2018-16396

CVSS3: 5.9
redhat
больше 7 лет назад

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats.

nvd логотип

CVE-2018-16396

CVSS3: 8.1
nvd
около 7 лет назад

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats.

debian логотип

CVE-2018-16396

CVSS3: 8.1
debian
около 7 лет назад

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5. ...

github логотип

GHSA-xh4x-ph6p-vmxh

CVSS3: 8.1
github
больше 3 лет назад

An issue was discovered in Ruby before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.2, and 2.6.x before 2.6.0-preview3. It does not taint strings that result from unpacking tainted strings with some formats.

oracle-oval логотип

ELSA-2019-2028

oracle-oval
больше 6 лет назад

ELSA-2019-2028: ruby security update (MODERATE)

EPSS

Процентиль: 87%
0.03288
Низкий

6.8 Medium

CVSS2

8.1 High

CVSS3