Количество 46
Количество 46
ELSA-2023-7025
ELSA-2023-7025: ruby:2.5 security update (MODERATE)
ELSA-2023-3821
ELSA-2023-3821: ruby:2.7 security, bug fix, and enhancement update (MODERATE)
SUSE-SU-2023:4176-1
Security update for ruby2.5
ELSA-2024-1576
ELSA-2024-1576: ruby:3.1 security, bug fix, and enhancement update (MODERATE)
ELSA-2024-1431
ELSA-2024-1431: ruby:3.1 security, bug fix, and enhancement update (MODERATE)
ELSA-2024-3838
ELSA-2024-3838: ruby security update (MODERATE)
ELSA-2024-3500
ELSA-2024-3500: ruby:3.0 security update (MODERATE)
ROS-20240826-09
Множественные уязвимости ruby
CVE-2023-28756
A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.
CVE-2023-28756
A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.
CVE-2023-28756
A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.
CVE-2023-28756
A ReDoS issue was discovered in the Time component through 0.2.1 in Ru ...
GHSA-fg7x-g82r-94qc
Ruby Time component ReDoS issue
BDU:2023-02020
Уязвимость библиотеки Time интерпретатора Ruby, позволяющая нарушителю вызвать отказ в обслуживании
CVE-2022-28739
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f.
CVE-2022-28739
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f.
CVE-2022-28739
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f.
CVE-2022-28739
CVE-2022-28739
There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, ...
RLSA-2022:5338
Moderate: ruby:2.6 security, bug fix, and enhancement update
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
| ELSA-2023-7025 ELSA-2023-7025: ruby:2.5 security update (MODERATE) | больше 1 года назад | ||
| ELSA-2023-3821 ELSA-2023-3821: ruby:2.7 security, bug fix, and enhancement update (MODERATE) | около 2 лет назад | ||
 | SUSE-SU-2023:4176-1 Security update for ruby2.5 | почти 2 года назад | ||
| ELSA-2024-1576 ELSA-2024-1576: ruby:3.1 security, bug fix, and enhancement update (MODERATE) | больше 1 года назад | ||
| ELSA-2024-1431 ELSA-2024-1431: ruby:3.1 security, bug fix, and enhancement update (MODERATE) | больше 1 года назад | ||
| ELSA-2024-3838 ELSA-2024-3838: ruby security update (MODERATE) | около 1 года назад | ||
| ELSA-2024-3500 ELSA-2024-3500: ruby:3.0 security update (MODERATE) | около 1 года назад | ||
 | ROS-20240826-09 Множественные уязвимости ruby | CVSS3: 7.5 | 12 месяцев назад | |
 | CVE-2023-28756 A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2. | CVSS3: 5.3 | 1% Низкий | больше 2 лет назад |
 | CVE-2023-28756 A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2. | CVSS3: 5.3 | 1% Низкий | больше 2 лет назад |
 | CVE-2023-28756 A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2. | CVSS3: 5.3 | 1% Низкий | больше 2 лет назад |
| CVE-2023-28756 A ReDoS issue was discovered in the Time component through 0.2.1 in Ru ... | CVSS3: 5.3 | 1% Низкий | больше 2 лет назад |
| GHSA-fg7x-g82r-94qc Ruby Time component ReDoS issue | CVSS3: 7.5 | 1% Низкий | больше 2 лет назад |
 | BDU:2023-02020 Уязвимость библиотеки Time интерпретатора Ruby, позволяющая нарушителю вызвать отказ в обслуживании | CVSS3: 7.5 | 1% Низкий | больше 2 лет назад |
| CVE-2022-28739 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f. | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
| CVE-2022-28739 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f. | CVSS3: 6.2 | 0% Низкий | больше 3 лет назад |
| CVE-2022-28739 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, 3.x before 3.0.4, and 3.1.x before 3.1.2. It occurs in String-to-Float conversion, including Kernel#Float and String#to_f. | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
 | CVSS3: 7.5 | 0% Низкий | около 3 лет назад | |
| CVE-2022-28739 There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, ... | CVSS3: 7.5 | 0% Низкий | около 3 лет назад |
 | RLSA-2022:5338 Moderate: ruby:2.6 security, bug fix, and enhancement update | 0% Низкий | около 3 лет назад |
Уязвимостей на страницу