10 matches found
TencentOS Server 4: ruby (TSSA-2025:0467)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0467 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...
Mageia: Security Advisory (MGASA-2025-0290)
The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 8 : ruby:3.3 (RHSA-2025:10217)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:10217 advisory. Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system...
CVE-2025-25186 affecting package ruby for versions less than 3.3.5-2
CVE-2025-25186 affecting package ruby for versions less than 3.3.5-2. A patched version of the package is available...
Linux Distros Unpatched Vulnerability : CVE-2025-25186
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Starting in version 0.3.2 and prior to versions 0.3.8, 0.4.19, and 0.5....
OESA-2025-1195 ruby security update
Ruby is a fast and easy interpreted scripting language for object-oriented programming. It has many functions for processing text Files and perform system management tasks such as Perl. Security Fixes: Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Starti...
CVE-2025-25186 vulnerabilities
Vulnerabilities for packages: ruby3.4-net-imap, ruby3.3-rails, ruby3.4-rails, ruby3.3-net-imap, ruby3.2-net-imap, kube-fluentd-operator, logstash, ruby3.2-rails...
CVE-2025-25186 vulnerabilities
Vulnerabilities for packages: ruby3.2-rails, kube-fluentd-operator, ruby3.3-net-imap, ruby3.4-net-imap, ruby3.4-rails, ruby3.3-rails, ruby3.2-net-imap, logstash...
CVE-2025-25186
CVE-2025-25186 concerns Net::IMAP in Ruby. The DoS arises from the IMAP response parser reading highly compressed uid-set data without limiting expansion, potentially exhausting memory while a client remains connected. Fixed in versions 0.3.8, 0.4.19, 0.5.6, and later; affected range includes 0.3...
CVE-2025-25186
creationtimestamp| type| source ---|---|--- 2025-02-08 00:01:06+00:00| published-proof-of-concept| https://github.com/ruby/net-imap/security/advisories/GHSA-7fc5-f82f-cx69 2025-02-10 16:16:55+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhtk6r3fgx2x 2025-02-10...