2 matches found
CLSA-2026-1768301582 ruby: Fix of CVE-2025-24294
CVE-2025-24294: Limit the length of a decompressed domain name to prevent DoS in resolv gem...
CVE-2025-24294
A denial of service flaw was found in resolv ruby gem. This flaw allows an attacker to craft a malicious DNS packet containing a highly compressed domain name. When the resolv library parses this packet, the name decompression process consumes a large amount of CPU resources, as the library does...