4378 matches found
GHSA-84XV-JFRM-H4GM vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, gitlab-rails-ce-fips...
CVE-2024-1485 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, gitlab-rails-ce-fips...
CVE-2026-54297 vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, ruby3.3-faraday, gitlab-rails-ce-fips, logstash, kube-logging-operator, logstash-fips, gitlab-cng, cinc-auditor, kube-fluentd-operator...
GHSA-98M9-HRRM-R99R vulnerabilities
Vulnerabilities for packages: gitlab-rails-ce, ruby3.3-faraday, gitlab-rails-ce-fips, logstash, kube-logging-operator, logstash-fips, gitlab-cng, cinc-auditor, kube-fluentd-operator...
GHSA-6WX8-W4F5-WWCR vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-fluentd-operator, ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby3.4-fluentd-kubernetes-daemonset, ruby3.4-rails, ruby3.2-fluentd-kubernetes-daemonset, ruby3.3-fluentd-kubernetes-daemonset, ruby3.2-rails...
GHSA-P67V-3W7G-WJG7 vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-logging-operator, ruby3.4-rails, ruby3.2-rails, logstash...
GHSA-H8W8-99G7-QMVJ vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-fluentd-operator, ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby3.4-fluentd-kubernetes-daemonset, ruby3.4-rails, ruby3.2-fluentd-kubernetes-daemonset, ruby3.3-fluentd-kubernetes-daemonset, ruby3.2-rails...
GHSA-WV3X-4VXV-WHPP vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-fluentd-operator, ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby3.4-fluentd-kubernetes-daemonset, ruby3.4-rails, ruby3.2-fluentd-kubernetes-daemonset, ruby3.3-fluentd-kubernetes-daemonset, ruby3.2-rails...
GHSA-PHWJ-RPRQ-35PP vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-logging-operator, ruby3.4-rails, ruby3.2-rails, logstash...
GHSA-WFPW-MMFH-QQ69 vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-logging-operator, ruby3.4-rails, ruby3.2-rails, logstash...
GHSA-WJV4-X9W8-WM3H vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-logging-operator, ruby3.4-rails, ruby3.2-rails, logstash...
CVE-2026-54904 vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-fluentd-operator, ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby3.4-fluentd-kubernetes-daemonset, ruby3.4-rails, ruby3.2-fluentd-kubernetes-daemonset, ruby3.3-fluentd-kubernetes-daemonset, ruby3.2-rails...
CVE-2026-54906 vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-fluentd-operator, ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby3.4-fluentd-kubernetes-daemonset, ruby3.4-rails, ruby3.2-fluentd-kubernetes-daemonset, ruby3.3-fluentd-kubernetes-daemonset, ruby3.2-rails...
GHSA-8678-W3JW-XFC2 vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-logging-operator, ruby3.4-rails, ruby3.2-rails, logstash...
GHSA-5V8H-3H3Q-446P vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-logging-operator, ruby3.4-rails, ruby3.2-rails, logstash...
CVE-2026-54905 vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-fluentd-operator, ruby4.0-fluentd-kubernetes-daemonset, kube-logging-operator, ruby3.4-fluentd-kubernetes-daemonset, ruby3.4-rails, ruby3.2-fluentd-kubernetes-daemonset, ruby3.3-fluentd-kubernetes-daemonset, ruby3.2-rails...
GHSA-9CV2-CFXC-V4V2 vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-logging-operator, ruby3.4-rails, ruby3.2-rails, logstash...
GHSA-5PRR-V3J2-97MH vulnerabilities
Vulnerabilities for packages: ruby3.3-rails, kube-logging-operator, ruby3.4-rails, ruby3.2-rails, logstash...
Astra Linux – Vulnerability in ruby-rails-html-sanitizer
Rails-html-sanitizer is responsible for sanitizing HTML fragments in Rails applications. Prior to version 1.4.4, there was a potential XSS vulnerability with certain configurations of Rails::Html::Sanitizer, due to an incomplete fix of CVE-2022-32209. Rails::Html::Sanitizer might allow an attacke...
Astra Linux – Vulnerability in Ruby-Rack
There is a denial-of-service vulnerability in the Content-Disposition parsing component of Rack, which was fixed in versions 2.0.9.2, 2.1.4.2, 2.2.4.1, and 3.0.0.1. This vulnerability could allow an attacker to create an input that causes the Content-Disposition header parsing in Rack to take an...