Количество 28
Количество 28
ELSA-2023-3821
ELSA-2023-3821: ruby:2.7 security, bug fix, and enhancement update (MODERATE)
SUSE-SU-2023:4176-1
Security update for ruby2.5
ELSA-2024-1576
ELSA-2024-1576: ruby:3.1 security, bug fix, and enhancement update (MODERATE)
ELSA-2024-1431
ELSA-2024-1431: ruby:3.1 security, bug fix, and enhancement update (MODERATE)
ELSA-2023-7025
ELSA-2023-7025: ruby:2.5 security update (MODERATE)
ELSA-2024-3838
ELSA-2024-3838: ruby security update (MODERATE)
ELSA-2024-3500
ELSA-2024-3500: ruby:3.0 security update (MODERATE)
ROS-20240826-09
Множественные уязвимости ruby
CVE-2023-28755
A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1.
CVE-2023-28755
A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1.
CVE-2023-28755
A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1.
CVE-2023-28755
A ReDoS issue was discovered in the URI component through 0.12.0 in Ru ...
GHSA-hv5j-3h9f-99c2
Ruby URI component ReDoS issue
BDU:2023-03870
Уязвимость компонента URI языка программирования Ruby, связанная с использованием регулярного выражения c неэффективной вычислительной сложностью, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2023-28756
A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.
CVE-2023-28756
A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.
CVE-2023-28756
A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.
CVE-2023-28756
A ReDoS issue was discovered in the Time component through 0.2.1 in Ru ...
CVE-2021-33621
The cgi gem before 0.1.0.2, 0.2.x before 0.2.2, and 0.3.x before 0.3.5 for Ruby allows HTTP response splitting. This is relevant to applications that use untrusted user input either to generate an HTTP response or to create a CGI::Cookie object.
CVE-2021-33621
The cgi gem before 0.1.0.2, 0.2.x before 0.2.2, and 0.3.x before 0.3.5 for Ruby allows HTTP response splitting. This is relevant to applications that use untrusted user input either to generate an HTTP response or to create a CGI::Cookie object.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| ELSA-2023-3821 ELSA-2023-3821: ruby:2.7 security, bug fix, and enhancement update (MODERATE) | почти 2 года назад | ||
 | SUSE-SU-2023:4176-1 Security update for ruby2.5 | больше 1 года назад | ||
| ELSA-2024-1576 ELSA-2024-1576: ruby:3.1 security, bug fix, and enhancement update (MODERATE) | около 1 года назад | ||
| ELSA-2024-1431 ELSA-2024-1431: ruby:3.1 security, bug fix, and enhancement update (MODERATE) | больше 1 года назад | ||
| ELSA-2023-7025 ELSA-2023-7025: ruby:2.5 security update (MODERATE) | больше 1 года назад | ||
| ELSA-2024-3838 ELSA-2024-3838: ruby security update (MODERATE) | около 1 года назад | ||
| ELSA-2024-3500 ELSA-2024-3500: ruby:3.0 security update (MODERATE) | около 1 года назад | ||
 | ROS-20240826-09 Множественные уязвимости ruby | CVSS3: 7.5 | 10 месяцев назад | |
 | CVE-2023-28755 A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1. | CVSS3: 5.3 | 0% Низкий | около 2 лет назад |
 | CVE-2023-28755 A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1. | CVSS3: 5.3 | 0% Низкий | около 2 лет назад |
 | CVE-2023-28755 A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1. | CVSS3: 5.3 | 0% Низкий | около 2 лет назад |
| CVE-2023-28755 A ReDoS issue was discovered in the URI component through 0.12.0 in Ru ... | CVSS3: 5.3 | 0% Низкий | около 2 лет назад |
| GHSA-hv5j-3h9f-99c2 Ruby URI component ReDoS issue | CVSS3: 7.5 | 0% Низкий | около 2 лет назад |
 | BDU:2023-03870 Уязвимость компонента URI языка программирования Ruby, связанная с использованием регулярного выражения c неэффективной вычислительной сложностью, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 5.3 | 0% Низкий | около 2 лет назад |
| CVE-2023-28756 A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2. | CVSS3: 5.3 | 1% Низкий | около 2 лет назад |
| CVE-2023-28756 A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2. | CVSS3: 5.3 | 1% Низкий | около 2 лет назад |
| CVE-2023-28756 A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2. | CVSS3: 5.3 | 1% Низкий | около 2 лет назад |
| CVE-2023-28756 A ReDoS issue was discovered in the Time component through 0.2.1 in Ru ... | CVSS3: 5.3 | 1% Низкий | около 2 лет назад |
| CVE-2021-33621 The cgi gem before 0.1.0.2, 0.2.x before 0.2.2, and 0.3.x before 0.3.5 for Ruby allows HTTP response splitting. This is relevant to applications that use untrusted user input either to generate an HTTP response or to create a CGI::Cookie object. | CVSS3: 8.8 | 2% Низкий | больше 2 лет назад |
| CVE-2021-33621 The cgi gem before 0.1.0.2, 0.2.x before 0.2.2, and 0.3.x before 0.3.5 for Ruby allows HTTP response splitting. This is relevant to applications that use untrusted user input either to generate an HTTP response or to create a CGI::Cookie object. | CVSS3: 8.8 | 2% Низкий | больше 2 лет назад |
Уязвимостей на страницу