Описание
JSON is a JSON implementation for Ruby. Starting in version 2.10.0 and prior to version 2.10.2, a specially crafted document could cause an out of bound read, most likely resulting in a crash. Versions prior to 2.10.0 are not vulnerable. Version 2.10.2 fixes the problem. No known workarounds are available.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 2.10.x only |
| esm-apps/bionic | not-affected | 2.10.x only |
| esm-apps/focal | not-affected | 2.10.x only |
| esm-apps/jammy | not-affected | 2.10.x only |
| esm-apps/noble | not-affected | 2.10.x only |
| esm-apps/xenial | not-affected | 2.10.x only |
| esm-infra-legacy/trusty | not-affected | 2.10.x only |
| focal | ignored | end of standard support, was needs-triage |
| jammy | not-affected | 2.10.x only |
| noble | not-affected | 2.10.x only |
Показывать по
EPSS
7.5 High
CVSS3
Связанные уязвимости
JSON is a JSON implementation for Ruby. Starting in version 2.10.0 and prior to version 2.10.2, a specially crafted document could cause an out of bound read, most likely resulting in a crash. Versions prior to 2.10.0 are not vulnerable. Version 2.10.2 fixes the problem. No known workarounds are available.
JSON is a JSON implementation for Ruby. Starting in version 2.10.0 and prior to version 2.10.2, a specially crafted document could cause an out of bound read, most likely resulting in a crash. Versions prior to 2.10.0 are not vulnerable. Version 2.10.2 fixes the problem. No known workarounds are available.
JSON is a JSON implementation for Ruby. Starting in version 2.10.0 and ...
Уязвимость расширения JSON Gem интерпретатора языка программирования Ruby, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
7.5 High
CVSS3