Unity Linux 20.1060e / 20.1070e Security Update: rubygem-addressable (UTSA-2026-016622)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016622 advisory. Addressable is an alternative implementation to the URI implementation that is part of Ruby's standard library. An uncontrolled resource consumption vulnerability...

OESA-2026-1967 rubygem-addressable security update

Addressable is a replacement for the URI implementation that is part of Ruby's standard library. It more closely conforms to the relevant RFCs and adds support for URI and URL templates. Security Fixes: Within the URI template implementation in Addressable, two classes of URI template generate...

CVE-2026-35611 affecting package rubygem-addressable for versions less than 2.9.0-1

CVE-2026-35611 affecting package rubygem-addressable for versions less than 2.9.0-1. An upgraded version of the package is available that resolves this issue...

rubygem-addressable: ReDoS in templates

A resource-consumption vulnerability was found in rubygem addressable, where its URI template implementation could allow an attacker's crafted template to consume resources, resulting in a denial of service. The highest threat from this vulnerability is to system availability...

OESA-2021-1278 rubygem-addressable security update

Addressable is a replacement for the URI implementation that is part of Ruby's standard library. It more closely conforms to the relevant RFCs and adds support for URI and URL templates. Security Fixes: Addressable is an alternative implementation to the URI implementation that is part of Ruby's...

Regular Expression Denial of Service (ReDoS)

Overview addressable is an is an alternative implementation to the URI implementation that is part of Ruby's standard library. Affected versions of this package are vulnerable to Regular Expression Denial of Service ReDoS within the URI template implementation. A maliciously crafted template may...