Lucene search
K

10 matches found

OPENSUSE Linux
OPENSUSE Linux
added 2025/05/18 12:0 a.m.8 views

ruby3.4-rubygem-activerecord-7.0-7.0.8.6-1.3 on GA media (moderate)

ruby3.4-rubygem-activerecord-7.0-7.0.8.6-1.3 on GA media Announcement ID: openSUSE-SU-2025:15112-1 Rating: moderate Cross-References: CVE-2022-32224 CVE-2022-44566 CVE-2023-22794 CVE-2023-38037 CVSS scores: CVE-2022-32224 SUSE : 7 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2022-44566 SUSE :...

7CVSS7.4AI score0.02386EPSS
Exploits3
OSV
OSV
added 2023/03/01 1:5 p.m.10 views

SUSE-SU-2023:0587-1 Security update for rubygem-activerecord-4_2

This update for rubygem-activerecord-42 contains the following fixes: - CVE-2022-44566: Fixed a potential denial of service due to an inefficient comparison between integer and numeric values. bsc1207450 - fixed regression caused by fix for CVE-2022-44566. bsc1207450...

7.5CVSS7.4AI score0.01265EPSS
Exploits1References3
OSV
OSV
added 2023/03/01 11:4 a.m.4 views

OESA-2023-1132 rubygem-activerecord security update

Implements the ActiveRecord pattern Fowler, PoEAA for ORM. It ties database tables and classes together for business objects, like Customer or Subscription, that can find, save, and destroy themselves without resorting to manual SQL. Security Fixes: A denial of service vulnerability present in...

8.8CVSS7.4AI score0.02153EPSS
Exploits2References3
OSV
OSV
added 2023/02/24 3:21 p.m.9 views

SUSE-SU-2023:0518-1 Security update for rubygem-activerecord-4_2

This update for rubygem-activerecord-42 fixes the following issues: - CVE-2022-44566: Fixed a potential denial of service due to an inefficient comparison between integer and numeric values bsc1207450...

7.5CVSS7.4AI score0.01265EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/02/24 12:0 a.m.27 views

SUSE SLES15 / openSUSE 15 Security Update : rubygem-activerecord-5_1 (SUSE-SU-2023:0492-1)

The remote SUSE Linux SLES15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:0492-1 advisory. - CVE-2022-44566: Fixed possible denial of service vulnerability in ActiveRecord's PostgreSQL adapter bsc1207450. Tenable has extracted th...

7.5CVSS6.4AI score0.01265EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2023/02/09 8:15 p.m.45 views

CVE-2022-44566

A denial of service vulnerability present in ActiveRecord's PostgreSQL adapter 7.0.4.1 and 6.1.7.1. When a value outside the range for a 64bit signed integer is provided to the PostgreSQL connection adapter, it will treat the target column type as numeric. Comparing integer values against numeric...

7.5CVSS6.4AI score0.01265EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/02/09 12:0 a.m.41 views

CVE-2022-44566

A denial of service vulnerability present in ActiveRecord's PostgreSQL adapter 7.0.4.1 and 6.1.7.1. When a value outside the range for a 64bit signed integer is provided to the PostgreSQL connection adapter, it will treat the target column type as numeric. Comparing integer values against numeric...

7.6AI score0.01265EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2023/02/09 12:0 a.m.39 views

CVE-2022-44566

A denial of service vulnerability present in ActiveRecord's PostgreSQL adapter 7.0.4.1 and 6.1.7.1. When a value outside the range for a 64bit signed integer is provided to the PostgreSQL connection adapter, it will treat the target column type as numeric. Comparing integer values against numeric...

7.5CVSS6AI score0.01265EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2023/02/01 12:0 a.m.34 views

Fedora 38 : rubygem-actioncable / rubygem-actionmailbox / rubygem-actionmailer / etc (2023-f60cca0686)

The remote Fedora 38 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-f60cca0686 advisory. Upgrade to Ruby on Rails 7.0.4.2. Fixes numerous CVEs: https://rubyonrails.org/2023/1/17/Rails- Versions-6-0-6-1-6-1-7-1-7-0-4-1-have-been-released...

8.8CVSS7.3AI score0.02278EPSS
Exploits2References7
RubySec
RubySec
added 2023/01/18 12:0 a.m.46 views

Denial of Service Vulnerability in ActiveRecord’s PostgreSQL adapter

There is a potential denial of service vulnerability present in ActiveRecord’s PostgreSQL adapter. This has been assigned the CVE identifier CVE-2022-44566. Versions Affected: All. Not affected: None. Fixed Versions: 6.1.7.1, 7.0.4.1 Impact In ActiveRecord 7.0.4.1 and 6.1.7.1, when a value outsid...

7.5CVSS7.4AI score0.01265EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder