14179 matches found
USN-7057-1 ruby-webrick vulnerability
It was discovered that WEBrick incorrectly handled having both a Content- Length header and a Transfer-Encoding header. A remote attacker could possibly use this issue to perform a HTTP request smuggling attack...
Exploit for Improper Verification of Cryptographic Signature in Onelogin Ruby-Saml
Ruby-SAML / GitLab Authentication Bypass CVE-2024-45409 expl...
RHSA-2023:7025 Red Hat Security Advisory: ruby:2.5 security update
Bulletin has no description...
RHSA-2022:6450 Red Hat Security Advisory: ruby:3.0 security, bug fix, and enhancement update
Bulletin has no description...
RHSA-2022:6447 Red Hat Security Advisory: ruby:2.7 security, bug fix, and enhancement update
Bulletin has no description...
RHSA-2022:5338 Red Hat Security Advisory: ruby:2.6 security, bug fix, and enhancement update
Bulletin has no description...
The vulnerability of HTTP servers for Ruby/Rack applications developed with Puma allows attackers to access confidential information.
The vulnerability of HTTP servers for Ruby/Rack applications developed by Puma relates to the exposure of confidential information to unauthorized individuals. Exploiting this vulnerability could allow a malicious actor to gain access to confidential information...
The vulnerability of HTTP servers for Ruby/Rack applications developed with Puma allows attackers to execute arbitrary code.
The vulnerability of HTTP servers for Ruby/Rack applications developed with Puma is related to improper handling of HTTP requests. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...
The vulnerability of HTTP servers for Ruby/Rack applications developed with Puma allows attackers to access confidential information.
The vulnerability of HTTP servers for Ruby/Rack applications developed with Puma involves the proxy server sending a response back to another unknown client. Exploiting this vulnerability allows an attacker operating remotely to gain access to confidential information...
The vulnerability of HTTP servers for Ruby/Rack applications developed with Puma, which allows attackers to induce a service failure.
The vulnerability of HTTP servers for Ruby/Rack applications related to HTTP request processing flaws. Exploiting this vulnerability allows a remote attacker to cause service interruptions...
Ubuntu: Security Advisory (USN-7050-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHSA-2022:6856 Red Hat Security Advisory: rh-ruby27-ruby security, bug fix, and enhancement update
Bulletin has no description...
RHSA-2022:6855 Red Hat Security Advisory: rh-ruby30-ruby security, bug fix, and enhancement update
Bulletin has no description...
RHSA-2022:6585 Red Hat Security Advisory: ruby security, bug fix, and enhancement update
Bulletin has no description...
ruby:3.3 security update
An update is available for rubygem-pg, module.rubygem-mysql2, rubygem-mysql2, module.rubygem-pg. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Ruby is an...
RLSA-2024:6785 Moderate: ruby:3.3 security update
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fixes: rexml: DoS vulnerability in REXML CVE-2024-39908 rexml: rubygem-rexml: DoS when parsing an XML having many specific characters suc...
ruby:3.3 security update
An update is available for ruby, rubygem-abrt, module.rubygem-pg, rubygem-mysql2, module.ruby, rubygem-pg, module.rubygem-abrt, module.rubygem-mysql2. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...
RLSA-2024:6784 Moderate: ruby:3.3 security update
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fixes: rexml: DoS vulnerability in REXML CVE-2024-39908 rexml: rubygem-rexml: DoS when parsing an XML having many specific characters suc...
Debian: Security Advisory (DLA-3900-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DLA-3901-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...