Bug | bullseye | Description |
---|
CVE-2024-43398 | vulnerable (no DSA, postponed) | REXML is an XML toolkit for Ruby. The REXML gem before 3.3.6 has a DoS ... |
CVE-2024-41946 | vulnerable (no DSA, postponed) | REXML is an XML toolkit for Ruby. The REXML gem 3.3.2 has a DoS vulner ... |
CVE-2024-41123 | vulnerable (no DSA, postponed) | REXML is an XML toolkit for Ruby. The REXML gem before 3.3.2 has some ... |
CVE-2024-39908 | vulnerable (no DSA, postponed) | REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some ... |
CVE-2024-35176 | vulnerable (no DSA, postponed) | REXML is an XML toolkit for Ruby. The REXML gem before 3.2.6 has a den ... |
Bug | Description |
---|
CVE-2024-27282 | An issue was discovered in Ruby 3.x through 3.3.0. If attacker-supplie ... |
CVE-2024-27281 | An issue was discovered in RDoc 6.3.3 through 6.6.2, as distributed in ... |
CVE-2024-27280 | A buffer-overread issue was discovered in StringIO 3.0.1, as distribut ... |
CVE-2023-36617 | A ReDoS issue was discovered in the URI component before 0.12.2 for Ru ... |
CVE-2023-28756 | A ReDoS issue was discovered in the Time component through 0.2.1 in Ru ... |
CVE-2023-28755 | A ReDoS issue was discovered in the URI component through 0.12.0 in Ru ... |
CVE-2022-28739 | There is a buffer over-read in Ruby before 2.6.10, 2.7.x before 2.7.6, ... |
CVE-2022-28738 | A double free was found in the Regexp compiler in Ruby 3.x before 3.0. ... |
CVE-2021-41819 | CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes i ... |
CVE-2021-41817 | Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regula ... |
CVE-2021-41816 | CGI.escape_html in Ruby before 2.7.5 and 3.x before 3.0.3 has an integ ... |
CVE-2021-33621 | The cgi gem before 0.1.0.2, 0.2.x before 0.2.2, and 0.3.x before 0.3.5 ... |
CVE-2021-32066 | An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, an ... |
CVE-2021-31810 | An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, an ... |
CVE-2021-31799 | In RDoc 3.11 through 6.x before 6.3.1, as distributed with Ruby throug ... |
CVE-2021-28966 | In Ruby through 3.0 on Windows, a remote attacker can submit a crafted ... |
CVE-2021-28965 | The REXML gem before 3.2.5 in Ruby before 2.6.7, 2.7.x before 2.7.3, a ... |
CVE-2020-25613 | An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, an ... |
CVE-2020-10933 | An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6 ... |
CVE-2020-10663 | The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9 ... |