Lucene search
K

9 matches found

OSV
OSV
added 2025/09/12 5:58 p.m.6 views

CLSA-2025-1757699919 ruby: Fix of CVE-2016-2338

CVE-2016-2338: fix heap overflow vulnerability in startdocument function...

9.8CVSS5.9AI score0.04644EPSS
Exploits3References1
Amazon
Amazon
added 2025/09/04 12:0 a.m.8 views

Medium: ruby

Issue Overview: An exploitable heap overflow vulnerability exists in the Psych::Emitter startdocument function of Ruby. In Psych::Emitter startdocument function heap buffer "head" allocation is made based on tags array length. Specially constructed object passed as element of tags array can...

9.8CVSS7.5AI score0.04644EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.30 views

RHEL 7 : ruby (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - ruby: Fiddle::Function.new heap buffer overflow CVE-2016-2339 - Type confusion exists in canceleval Ruby'...

8.9AI score0.06204EPSS
Exploits11References13
Circl
Circl
added 2022/09/29 7:40 a.m.9 views

CVE-2016-2338

creationtimestamp| type| source ---|---|--- 2022-09-29 07:40:58+00:00| seen| https://t.me/cibsecurity/50651 2026-06-23 22:37:10+00:00| seen| https://bsky.app/profile/cyberhub.blog/post/3moyhn2pwgj2y...

9.8CVSS7.3AI score0.04644EPSS
Exploits3References2
Debian
Debian
added 2020/03/25 1:22 p.m.47 views

[SECURITY] [DLA 2158-1] ruby2.1 security update

Package : ruby2.1 Version : 2.1.5-2+deb8u9 CVE ID : CVE-2016-2338 An exploitable heap overflow vulnerability exists in the Psych::Emitter startdocument function of Ruby. In Psych::Emitter startdocument function heap buffer "head" allocation is made based on tags array length. Specially constructe...

9.8CVSS9.7AI score0.04644EPSS
Exploits3
Cvelist
Cvelist
added 2020/02/14 12:0 a.m.26 views

CVE-2016-2338

An exploitable heap overflow vulnerability exists in the Psych::Emitter startdocument function of Ruby. In Psych::Emitter startdocument function heap buffer "head" allocation is made based on tags array length. Specially constructed object passed as element of tags array can increase this array...

9.7AI score0.04644EPSS
Exploits3References3
seebug.org
seebug.org
added 2017/10/20 12:0 a.m.75 views

Ruby pack_pack Use After Free Vulnerability(CVE-2016-2338)

DESCRIPTION An exploitable User After Free vulnerability exists in the packpack function of Ruby. In packpack function each element of array which should be "pack", based on template string is converted to binary representation in proper way. If element is not compatible with corresponding to him...

7.6CVSS9.4AI score0.04644EPSS
Exploits3
seebug.org
seebug.org
added 2017/10/20 12:0 a.m.54 views

Ruby Psych::Emitter start_document Heap Overflow Vulnerability(CVE-2016-2338)

DESCRIPTION An exploitable heap overflow vulnerability exists in the Psych::Emitter startdocument function of Ruby. In Psych::Emitter startdocument function heap buffer "head" allocation is made based on tags array length. Specially constructed object passed as element of tags array can increase...

7.6CVSS9.3AI score0.04644EPSS
Exploits3
Talos
Talos
added 2016/06/14 12:0 a.m.30 views

Ruby Psych::Emitter start_document Heap Overflow Vulnerability

Talos Vulnerability Report TALOS-2016-0032 Ruby Psych::Emitter startdocument Heap Overflow Vulnerability June 14, 2016 CVE Number CVE-2016-2338 DESCRIPTION An exploitable heap overflow vulnerability exists in the Psych::Emitter startdocument function of Ruby. In Psych::Emitter startdocument...

9.8CVSS9.3AI score0.04644EPSS
Exploits3
Rows per page
Query Builder