ruby4.0-rubygem-globalid-1.2.1-1.9 on GA media (moderate)

ruby4.0-rubygem-globalid-1.2.1-1.9 on GA media Announcement ID: openSUSE-SU-2026:10347-1 Rating: moderate Cross-References: CVE-2023-22799 CVSS scores: CVE-2023-22799 SUSE : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves one...

OPENSUSE-SU-2026:10347-1 ruby4.0-rubygem-globalid-1.2.1-1.9 on GA media

These are all security issues fixed in the ruby4.0-rubygem-globalid-1.2.1-1.9 package on the GA media of openSUSE Tumbleweed...

EUVD-2023-0304

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2018-16476

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Broken Access Control vulnerability in Active Job versions = 4.2.0 allows an attacker to craft user input which can cause Active Job to deserialize it using...

Malicious code in globalid (npm)

The package globalid was found to contain malicious code...

MAL-2025-21583 Malicious code in globalid (npm)

The package globalid was found to contain malicious code...

OPENSUSE-SU-2025:15116-1 ruby3.4-rubygem-globalid-1.2.1-1.7 on GA media

These are all security issues fixed in the ruby3.4-rubygem-globalid-1.2.1-1.7 package on the GA media of openSUSE Tumbleweed...

Linux Distros Unpatched Vulnerability : CVE-2023-22799

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A ReDoS based DoS vulnerability in the GlobalID 1.0.1 which could allow an attacker supplying a carefully crafted input can cause the regular expression engine ...

OPENSUSE-SU-2024:14168-1 ruby3.3-rubygem-globalid-1.2.1-1.5 on GA media

These are all security issues fixed in the ruby3.3-rubygem-globalid-1.2.1-1.5 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:13156-1 ruby3.2-rubygem-globalid-1.1.0-1.3 on GA media

These are all security issues fixed in the ruby3.2-rubygem-globalid-1.1.0-1.3 package on the GA media of openSUSE Tumbleweed...

OPENSUSE-SU-2024:12648-1 ruby3.1-rubygem-globalid-1.1.0-1.1 on GA media

These are all security issues fixed in the ruby3.1-rubygem-globalid-1.1.0-1.1 package on the GA media of openSUSE Tumbleweed...

openSUSE: Security Advisory for rubygem (SUSE-SU-2023:0328-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

rubygem-globalid: ReDoS vulnerability

A flaw was found in rubygem-globalid. RubyGem’s GlobalID gem is vulnerable to a denial of service issue caused by a regular expression denial of service ReDoS flaw in the model name parsing. By sending a specially-crafted regex input, a remote attacker can cause a denial of service...

Internet Bug Bounty: [CVE-2023-22799] Possible ReDoS based DoS vulnerability in GlobalID

A ReDoS-based DoS vulnerability was discovered in the GlobalID gem, affecting versions 0.2.1 and above. Crafted input could cause the regular expression engine to consume excessive processing time, leading to a denial of service. The issue has been fixed in version 1.0.1...

OESA-2023-1112 rubygem-globalid security update

URIs for your models makes it easy to pass references around. Security Fixes: A ReDoS based DoS vulnerability in the GlobalID 1.0.1 which could allow an attacker supplying a carefully crafted input can cause the regular expression engine to take an unexpected amount of time. All users running an...

OESA-2023-1100 rubygem-globalid security update

URIs for your models makes it easy to pass references around. Security Fixes: A ReDoS based DoS vulnerability in the GlobalID 1.0.1 which could allow an attacker supplying a carefully crafted input can cause the regular expression engine to take an unexpected amount of time. All users running an...

OESA-2023-1101 rubygem-globalid security update

URIs for your models makes it easy to pass references around. Security Fixes: A ReDoS based DoS vulnerability in the GlobalID 1.0.1 which could allow an attacker supplying a carefully crafted input can cause the regular expression engine to take an unexpected amount of time. All users running an...

OESA-2023-1102 rubygem-globalid security update

URIs for your models makes it easy to pass references around. Security Fixes: A ReDoS based DoS vulnerability in the GlobalID 1.0.1 which could allow an attacker supplying a carefully crafted input can cause the regular expression engine to take an unexpected amount of time. All users running an...

SUSE CVE-2018-16476

A Broken Access Control vulnerability in Active Job versions = 4.2.0 allows an attacker to craft user input which can cause Active Job to deserialize it using GlobalId and give them access to information that they should not have. This vulnerability has been fixed in versions 4.2.11, 5.0.7.1,...

SUSE CVE-2023-22799

A ReDoS based DoS vulnerability in the GlobalID 1.0.1 which could allow an attacker supplying a carefully crafted input can cause the regular expression engine to take an unexpected amount of time. All users running an affected release should either upgrade or use one of the workarounds immediate...