10 matches found
ruby4.0 security update
An update is available for ruby4.0. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Ruby is the interpreted scripting language for quick and easy object-oriente...
ruby:2.5 security update
An update is available for module.rubygem-abrt, rubygem-bson, rubygem-mongo, module.ruby, module.rubygem-mysql2, module.rubygem-mongo, rubygem-mysql2, ruby, rubygem-pg, module.rubygem-bson, rubygem-abrt, rubygem-bundler, module.rubygem-pg, module.rubygem-bundler. This update affects Rocky Linux 8...
ruby:3.3 security update
An update is available for module.rubygem-abrt, module.ruby, module.rubygem-mysql2, module.rubygem-pg, rubygem-mysql2, ruby, rubygem-abrt, rubygem-pg. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
Important: Red Hat Security Advisory: ruby security update
An update for ruby is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
Important: Red Hat Security Advisory: ruby security update
An update for ruby is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for ea...
Amazon Linux 2023 : ruby4.0, ruby4.0-bundled-gems, ruby4.0-default-gems (ALAS2023-2026-1806)
It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1806 advisory. Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.3.10, 0.4.24, 0.5.14, and 0.6.4, a man-in-the-middle attacker can cause...
BELL-CVE-2026-42258
Bulletin has no description...
CVE-2026-42258 net-imap: Command Injection via unvalidated Symbol inputs
Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.4.24, 0.5.14, and 0.6.4, symbol arguments to commands are vulnerable to a CRLF Injection / IMAP Command injection via Symbol arguments passed to IMAP commands. This issue has been patched ...
CVE-2026-42258
Net::IMAP implements Internet Message Access Protocol IMAP client functionality in Ruby. Prior to versions 0.4.24, 0.5.14, and 0.6.4, symbol arguments to commands are vulnerable to a CRLF Injection / IMAP Command injection via Symbol arguments passed to IMAP commands. This issue has been patched ...
CVE-2026-42258 vulnerabilities
Vulnerabilities for packages: ruby4.0-net-imap, ruby3.2-net-imap, ruby3.3-net-imap, ruby3.2-rails, ruby3.3-rails, kube-fluentd-operator, kube-logging-operator, ruby3.4-rails, ruby4.0-rails, logstash, ruby3.4-net-imap...