684 matches found
OPENSUSE-SU-2026:10508-1 ruby4.0-rubygem-rack-2.2-2.2.23-1.1 on GA media
These are all security issues fixed in the ruby4.0-rubygem-rack-2.2-2.2.23-1.1 package on the GA media of openSUSE Tumbleweed...
Fedora 44 : rubygem-json (2026-3a7663d43d)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-3a7663d43d advisory. New version 2.19.2 is released. This fixes a format string injection vulnerability in JSON.parse, which is now assigned as CVE-2026-33210 Tenable has extract...
Malicious code in monolith-twirp-pullsd-repositories (RubyGems)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis 1c34eecc811d04d6583504ad631024a727df5e2107a1025a2786bf8a56a59d3a The OpenSSF Package Analysis project identified 'monolith-twirp-pullsd-repositories' @ 1.0.10 rubygems as malicious. It is considered malicious...
[SECURITY] Fedora 43 Update: rubygem-json-2.13.2-2.fc43
This is a implementation of the JSON specification according to RFC 4627 in Ruby. You can think of it as a low fat alternative to XML, if you want to store data to disk or transmit it over a network rather than use a verbose markup language...
Important: Red Hat Security Advisory: Satellite 6.17.7 Async Update
A new release is now available for Red Hat Satellite 6.17 for RHEL 9. Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs...
UBUNTU-CVE-2026-33167
Action Pack is a Rubygem for building web applications on the Rails framework. In versions on the 8.1 branch prior to 8.1.2.1, the debug exceptions page does not properly escape exception messages. A carefully crafted exception message could inject arbitrary HTML and JavaScript into the page,...
CVE-2026-33167
Action Pack is a Rubygem for building web applications on the Rails framework. In versions on the 8.1 branch prior to 8.1.2.1, the debug exceptions page does not properly escape exception messages. A carefully crafted exception message could inject arbitrary HTML and JavaScript into the page,...
CVE-2026-33167
Action Pack is a Rubygem for building web applications on the Rails framework. In versions on the 8.1 branch prior to 8.1.2.1, the debug exceptions page does not properly escape exception messages. A carefully crafted exception message could inject arbitrary HTML and JavaScript into the page,...
MAL-2026-1917 Malicious code in kaleido (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
ruby4.0-rubygem-web-console-4.2.1-1.9 on GA media (moderate)
ruby4.0-rubygem-web-console-4.2.1-1.9 on GA media Announcement ID: openSUSE-SU-2026:10367-1 Rating: moderate Cross-References: CVE-2015-3224 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
ruby4.0-rubygem-rails-8.0-8.0.3-1.3 on GA media (moderate)
ruby4.0-rubygem-rails-8.0-8.0.3-1.3 on GA media Announcement ID: openSUSE-SU-2026:10360-1 Rating: moderate Cross-References: CVE-2024-54133 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
ruby4.0-rubygem-multi_xml-0.6.0-1.31 on GA media (moderate)
ruby4.0-rubygem-multixml-0.6.0-1.31 on GA media Announcement ID: openSUSE-SU-2026:10355-1 Rating: moderate Cross-References: CVE-2013-0175 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in the...
ruby4.0-rubygem-rack-3.1.18-1.3 on GA media (moderate)
ruby4.0-rubygem-rack-3.1.18-1.3 on GA media Announcement ID: openSUSE-SU-2026:10358-1 Rating: moderate Cross-References: CVE-2013-0262 CVE-2013-0263 CVE-2015-3225 CVE-2018-16471 CVE-2019-16782 CVE-2020-8184 CVE-2022-30122 CVE-2022-30123 CVE-2022-44570 CVE-2022-44571 CVE-2022-44572 CVE-2023-27530...
ruby4.0-rubygem-jquery-rails-4.6.0-1.9 on GA media (moderate)
ruby4.0-rubygem-jquery-rails-4.6.0-1.9 on GA media Announcement ID: openSUSE-SU-2026:10350-1 Rating: moderate Cross-References: CVE-2015-1840 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in th...
ruby4.0-rubygem-grpc-1.70.1-1.7 on GA media (moderate)
ruby4.0-rubygem-grpc-1.70.1-1.7 on GA media Announcement ID: openSUSE-SU-2026:10348-1 Rating: moderate Cross-References: CVE-2023-0286 CVSS scores: CVE-2023-0286 SUSE : 7.4 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H Affected Products: openSUSE Tumbleweed An update that solves one vulnerability...
ruby4.0-rubygem-activesupport-8.0-8.0.3-1.3 on GA media (moderate)
ruby4.0-rubygem-activesupport-8.0-8.0.3-1.3 on GA media Announcement ID: openSUSE-SU-2026:10345-1 Rating: moderate Cross-References: CVE-2024-54133 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed...
ruby4.0-rubygem-loofah-2.23.1-1.5 on GA media (moderate)
ruby4.0-rubygem-loofah-2.23.1-1.5 on GA media Announcement ID: openSUSE-SU-2026:10353-1 Rating: moderate Cross-References: CVE-2018-16468 CVE-2018-8048 CVE-2019-15587 CVE-2022-23514 CVE-2022-23515 CVE-2022-23516 CVSS scores: CVE-2018-16468 SUSE : 6.4 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L...
ruby4.0-rubygem-activejob-8.0-8.0.3-1.3 on GA media (moderate)
ruby4.0-rubygem-activejob-8.0-8.0.3-1.3 on GA media Announcement ID: openSUSE-SU-2026:10341-1 Rating: moderate Cross-References: CVE-2024-54133 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in...
ruby4.0-rubygem-activemodel-8.0-8.0.3-1.3 on GA media (moderate)
ruby4.0-rubygem-activemodel-8.0-8.0.3-1.3 on GA media Announcement ID: openSUSE-SU-2026:10342-1 Rating: moderate Cross-References: CVE-2024-54133 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed i...
ruby4.0-rubygem-actiontext-8.0-8.0.3-1.3 on GA media (moderate)
ruby4.0-rubygem-actiontext-8.0-8.0.3-1.3 on GA media Announcement ID: openSUSE-SU-2026:10339-1 Rating: moderate Cross-References: CVE-2024-54133 Affected Products: openSUSE Tumbleweed An update that solves one vulnerability can now be installed. Description: These are all security issues fixed in...