Lucene search
OracleLinuxELSA-2022-6450HistorySep 15, 2022 - 12:00 a.m.
ruby:3.0 security, bug fix, and enhancement update
2022-09-1500:00:00
linux.oracle.com
29
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
ruby
[3.0.4-141]
- Upgrade to Ruby 3.0.4.
Resolves: rhbz#2109431
Resolves: rhbz#2110981 - Fix double free in Regexp compilation.
Resolves: CVE-2022-28738 - Fix buffer overrun in String-to-Float conversion.
Resolves: CVE-2022-28739
Related
rocky
rocky
ruby:3.0 security, bug fix, and enhancement update
2022-09-13 07:36:53
ruby:2.7 security, bug fix, and enhancement update
2022-09-13 07:36:49
ruby security, bug fix, and enhancement update
2022-09-20 11:36:12
almalinux
almalinux
Moderate: ruby:3.0 security, bug fix, and enhancement update
2022-09-13 00:00:00
Moderate: ruby:2.7 security, bug fix, and enhancement update
2022-09-13 00:00:00
Moderate: ruby security, bug fix, and enhancement update
2022-09-20 00:00:00
nessus
nessus
Rocky Linux 8 : ruby:3.0 (RLSA-2022:6450)
2022-11-17 00:00:00
Oracle Linux 8 : ruby:3.0 (ELSA-2022-6450)
2022-09-15 00:00:00
RHEL 8 : ruby:3.0 (RHSA-2022:6450)
2022-09-13 00:00:00
osv
osv
Moderate: ruby:3.0 security, bug fix, and enhancement update
2022-09-13 07:36:53
Moderate: ruby:3.0 security, bug fix, and enhancement update
2022-09-13 00:00:00
Moderate: ruby:2.7 security, bug fix, and enhancement update
2022-09-13 00:00:00
redhat
redhat
fedora
fedora
[SECURITY] Fedora 35 Update: ruby-3.0.4-153.fc35
2022-05-08 01:48:39
[SECURITY] Fedora 34 Update: ruby-3.0.4-153.fc34
2022-05-08 02:03:44
[SECURITY] Fedora 36 Update: ruby-3.1.2-164.fc36
2022-05-07 05:07:39
oraclelinux
oraclelinux
ruby:2.7 security, bug fix, and enhancement update
2022-09-15 00:00:00
ruby:2.5 security update
2022-08-03 00:00:00
ruby security, bug fix, and enhancement update
2022-09-21 00:00:00
redos
redos
ROS-20220516-06
2022-05-16 00:00:00
ubuntu
ubuntu
Ruby vulnerabilities
2022-06-06 00:00:00
Ruby vulnerabilities
2022-01-18 00:00:00
Ruby vulnerability
2022-06-06 00:00:00
slackware
slackware
[slackware-security] ruby
2022-04-13 20:52:10
cloudfoundry
cloudfoundry
USN-5462-1: Ruby vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
USN-5235-1: Ruby vulnerabilities | Cloud Foundry
2022-03-09 00:00:00
mageia
mageia
Updated ruby packages fix security vulnerability
2022-04-16 00:35:09
Updated ruby packages fix security vulnerability
2021-12-24 00:01:45
debian
debian
[SECURITY] [DLA 2853-1] ruby2.3 security update
2021-12-28 10:36:26
[SECURITY] [DSA 5067-1] ruby2.7 security update
2022-02-03 19:30:34
[SECURITY] [DSA 5066-1] ruby2.5 security update
2022-02-03 19:26:40
gentoo
gentoo
Ruby: Multiple vulnerabilities
2024-01-24 00:00:00
redhatcve
redhatcve
debiancve
debiancve
cve
cve
hackerone
hackerone
prion
prion
ubuntucve
ubuntucve
alpinelinux
alpinelinux
f5
f5
K30272432 : RubyGems vulnerability CVE-2021-41817
2022-06-01 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-04-13 07:35:07
Denial Of Service (DoS)
2021-11-25 17:08:14
Regular Expression Denial Of Service (ReDoS)
2021-11-17 06:57:56
freebsd
freebsd
Ruby -- Double free in Regexp compilation
2022-04-12 00:00:00
rubygem-cgi -- cookie prefix spoofing in CGI::Cookie.parse
2021-11-24 00:00:00
Ruby -- Buffer overrun in String-to-Float conversion
2022-04-12 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-28739 affecting package ruby 2.6.9-1
2022-06-15 17:03:10
CVE-2021-41817 affecting package ruby 2.7.4-6
2022-04-26 20:17:12
CVE-2021-41819 affecting package ruby 2.7.4-6
2022-04-26 20:17:12
suse
suse
Security update for ruby2.5 (important)
2022-05-03 00:00:00
Security update for ruby2.5 (moderate)
2022-09-16 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2024-4.0-0562
2024-02-08 00:00:00
Critical Photon OS Security Update - PHSA-2022-0199
2022-06-17 00:00:00
github
github
Regular expression denial of service vulnerability (ReDoS) in date
2021-11-16 00:32:30
Cookie Prefix Spoofing in CGI::Cookie.parse
2022-01-21 23:22:17
amazon
amazon
cnvd
cnvd
Ruby has unspecified vulnerabilities (CNVD-2022-06510)
2021-11-29 00:00:00
rubygems
rubygems
Double free in Regexp compilation
2022-04-11 21:00:00
Buffer overrun in String-to-Float conversion
2022-04-11 21:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related for ELSA-2022-6450