Количество 25
Количество 25
RLSA-2022:6585
Moderate: ruby security, bug fix, and enhancement update
ELSA-2022-6585
ELSA-2022-6585: ruby security, bug fix, and enhancement update (MODERATE)
ROS-20220516-06
Множественные уязвимости Ruby
RLSA-2022:6450
Moderate: ruby:3.0 security, bug fix, and enhancement update
ELSA-2022-6450
ELSA-2022-6450: ruby:3.0 security, bug fix, and enhancement update (MODERATE)
CVE-2022-28738
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
CVE-2022-28738
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
CVE-2022-28738
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
CVE-2022-28738
A double free was found in the Regexp compiler in Ruby 3.x before 3.0. ...
CVE-2022-28739
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f.
CVE-2022-28739
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f.
CVE-2022-28739
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f.
CVE-2022-28739
CVE-2022-28739
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, ...
GHSA-8pqg-8p79-j5j8
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
BDU:2022-03068
Уязвимость реализации класса Regexp интерпретатора языка программирования Ruby, позволяющая нарушителю вызвать отказ в обслуживании
RLSA-2022:5338
Moderate: ruby:2.6 security, bug fix, and enhancement update
GHSA-mvgc-rxvg-hqc6
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f.
ELSA-2023-12064
ELSA-2023-12064: ruby:2.5 security update (IMPORTANT)
ELSA-2022-5338
ELSA-2022-5338: ruby:2.6 security, bug fix, and enhancement update (MODERATE)
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | RLSA-2022:6585 Moderate: ruby security, bug fix, and enhancement update | почти 3 года назад | ||
| ELSA-2022-6585 ELSA-2022-6585: ruby security, bug fix, and enhancement update (MODERATE) | больше 2 лет назад | ||
 | ROS-20220516-06 Множественные уязвимости Ruby | около 3 лет назад | ||
| RLSA-2022:6450 Moderate: ruby:3.0 security, bug fix, and enhancement update | почти 3 года назад | ||
| ELSA-2022-6450 ELSA-2022-6450: ruby:3.0 security, bug fix, and enhancement update (MODERATE) | почти 3 года назад | ||
 | CVE-2022-28738 A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations. | CVSS3: 9.8 | 0% Низкий | около 3 лет назад |
 | CVE-2022-28738 A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations. | CVSS3: 7.7 | 0% Низкий | около 3 лет назад |
 | CVE-2022-28738 A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations. | CVSS3: 9.8 | 0% Низкий | около 3 лет назад |
| CVE-2022-28738 A double free was found in the Regexp compiler in Ruby 3.x before 3.0. ... | CVSS3: 9.8 | 0% Низкий | около 3 лет назад |
| CVE-2022-28739 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f. | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
| CVE-2022-28739 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f. | CVSS3: 6.2 | 0% Низкий | около 3 лет назад |
| CVE-2022-28739 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f. | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
 | CVSS3: 7.5 | 0% Низкий | около 3 лет назад | |
| CVE-2022-28739 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, ... | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
| GHSA-8pqg-8p79-j5j8 A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations. | CVSS3: 9.8 | 0% Низкий | около 3 лет назад |
 | BDU:2022-03068 Уязвимость реализации класса Regexp интерпретатора языка программирования Ruby, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 6.2 | 0% Низкий | около 3 лет назад |
| RLSA-2022:5338 Moderate: ruby:2.6 security, bug fix, and enhancement update | 0% Низкий | почти 3 года назад | |
| GHSA-mvgc-rxvg-hqc6 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f. | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
| ELSA-2023-12064 ELSA-2023-12064: ruby:2.5 security update (IMPORTANT) | больше 2 лет назад | ||
| ELSA-2022-5338 ELSA-2022-5338: ruby:2.6 security, bug fix, and enhancement update (MODERATE) | почти 3 года назад |
Уязвимостей на страницу