Количество 46
Количество 46
CVE-2022-28738
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
CVE-2022-28738
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
CVE-2022-28738
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
CVE-2022-28738
A double free was found in the Regexp compiler in Ruby 3.x before 3.0. ...
ELSA-2023-7025
ELSA-2023-7025: ruby:2.5 security update (MODERATE)
GHSA-8pqg-8p79-j5j8
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
BDU:2022-03068
Уязвимость реализации класса Regexp интерпретатора языка программирования Ruby, позволяющая нарушителю вызвать отказ в обслуживании
ROS-20240918-01
Множественные уязвимости ruby
RLSA-2022:0543
Important: ruby:2.6 security update
ELSA-2022-0543
ELSA-2022-0543: ruby:2.6 security update (IMPORTANT)
CVE-2021-41819
CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affects the CGI gem through 0.3.0 for Ruby.
CVE-2021-41819
CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affects the CGI gem through 0.3.0 for Ruby.
CVE-2021-41819
CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affects the CGI gem through 0.3.0 for Ruby.
CVE-2021-41819
CVE-2021-41819
CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes i ...
CVE-2021-41817
Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1.
CVE-2021-41817
Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1.
CVE-2021-41817
Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1.
CVE-2021-41817
CVE-2021-41817
Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regula ...
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2022-28738 A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations. | CVSS3: 9.8 | 0% Низкий | около 3 лет назад |
 | CVE-2022-28738 A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations. | CVSS3: 7.7 | 0% Низкий | около 3 лет назад |
 | CVE-2022-28738 A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations. | CVSS3: 9.8 | 0% Низкий | около 3 лет назад |
| CVE-2022-28738 A double free was found in the Regexp compiler in Ruby 3.x before 3.0. ... | CVSS3: 9.8 | 0% Низкий | около 3 лет назад |
| ELSA-2023-7025 ELSA-2023-7025: ruby:2.5 security update (MODERATE) | больше 1 года назад | ||
| GHSA-8pqg-8p79-j5j8 A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations. | CVSS3: 9.8 | 0% Низкий | около 3 лет назад |
 | BDU:2022-03068 Уязвимость реализации класса Regexp интерпретатора языка программирования Ruby, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 6.2 | 0% Низкий | около 3 лет назад |
 | ROS-20240918-01 Множественные уязвимости ruby | CVSS3: 9.8 | 9 месяцев назад | |
 | RLSA-2022:0543 Important: ruby:2.6 security update | больше 3 лет назад | ||
| ELSA-2022-0543 ELSA-2022-0543: ruby:2.6 security update (IMPORTANT) | больше 3 лет назад | ||
| CVE-2021-41819 CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affects the CGI gem through 0.3.0 for Ruby. | CVSS3: 7.5 | 1% Низкий | больше 3 лет назад |
| CVE-2021-41819 CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affects the CGI gem through 0.3.0 for Ruby. | CVSS3: 7.5 | 1% Низкий | больше 3 лет назад |
| CVE-2021-41819 CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affects the CGI gem through 0.3.0 for Ruby. | CVSS3: 7.5 | 1% Низкий | больше 3 лет назад |
 | CVSS3: 7.5 | 1% Низкий | больше 3 лет назад | |
| CVE-2021-41819 CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes i ... | CVSS3: 7.5 | 1% Низкий | больше 3 лет назад |
| CVE-2021-41817 Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
| CVE-2021-41817 Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
| CVE-2021-41817 Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1. | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
| CVSS3: 7.5 | 0% Низкий | больше 3 лет назад | |
| CVE-2021-41817 Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regula ... | CVSS3: 7.5 | 0% Низкий | больше 3 лет назад |
Уязвимостей на страницу