2175 matches found
Important Photon OS Security Update - PHSA-2026-4.0-1052
Updates of 'python3-pyOpenSSL', 'rubygem-oj', 'python3-lxml', 'rubygem-concurrent-ruby', 'rubygem-nokogiri' packages of Photon OS have been released...
Photon OS 5.0: Rubygem PHSA-2026-5.0-0909
An update of the rubygem package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2026-5.0-0909. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
Important Photon OS Security Update - PHSA-2026-5.0-0911
Updates of 'rubygem-faraday', 'python3-mistune', 'python3-urllib3', 'rubygem-nokogiri' packages of Photon OS have been released...
Critical Photon OS Security Update - PHSA-2026-5.0-0909
Updates of 'rubygem-concurrent-ruby' packages of Photon OS have been released...
MiracleLinux 8 : ruby:3.3 (AXSA:2026-769:01)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2026-769:01 advisory. erb: ERB: Arbitrary code execution via deserialization bypass CVE-2026-41316 Tenable has extracted the preceding description block directly from the...
[SECURITY] Fedora 43 Update: rubygem-yard-0.9.37-5.fc43
YARD is a documentation generation tool for the Ruby programming language. It enables the user to generate consistent, usable documentation that can be exported to a number of formats very easily, and also supports extending for custom Ruby constructs such as custom class level definitions...
Fedora 44 : rubygem-yard (2026-acefc1fe48)
The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-acefc1fe48 advisory. Backport 0.9.41 / 0.9.44 fixes for possible path traversal issues Tenable has extracted the preceding description block directly from the Fedora security...
Fedora 43 : rubygem-yard (2026-2d0a32ddc0)
The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-2d0a32ddc0 advisory. Backport 0.9.41 / 0.9.44 fixes for possible path traversal issues Tenable has extracted the preceding description block directly from the Fedora security...
ruby:3.3 security update
ruby 3.3.10-6 - Fix arbitrary code execution via deserialization bypass in ERB. CVE-2026-41316 Resolves: RHEL-171247 rubygem-abrt 0.4.0-1 - Update to abrt 0.4.0. Resolves: rhbz1842476 rubygem-mysql2 0.5.5-1 - Upgrade to mysql2 0.5.5. Related: RHEL-17090 rubygem-pg 1.5.4-1 - Upgrade to pg 1.5.4...
Unity Linux 20.1060e / 20.1070e Security Update: rubygem-rails (UTSA-2026-016644)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016644 advisory. A client side enforcement of server side security vulnerability exists in rails 5.2.4.2 and rails 6.0.3.1 ActiveStorage's S3 adapter that allows the Content-Length o...
Unity Linux 20.1060e / 20.1070e Security Update: rubygem-excon (UTSA-2026-016618)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016618 advisory. In RubyGem excon before 0.71.0, there was a race condition around persistent connections, where a connection which is interrupted such as by a timeout would leave da...
Unity Linux 20.1060e / 20.1070e Security Update: rubygem-kramdown (UTSA-2026-016633)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016633 advisory. Kramdown before 2.3.1 does not restrict Rouge formatters to the Rouge::Formatters namespace, and thus arbitrary classes can be instantiated. Tenable has extracted th...
Unity Linux 20.1060e / 20.1070e Security Update: rubygem-kramdown (UTSA-2026-016646)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016646 advisory. The kramdown gem before 2.3.0 for Ruby processes the template option inside Kramdown documents by default, which allows unintended read access such as...
Important Photon OS Security Update - PHSA-2026-4.0-1018
Updates of 'python3-mako', 'rubygem-nokogiri' packages of Photon OS have been released...
ROS-20260513-73-0009
Vulnerability in rubygem-rack related to misbehavior. Exploitation of the vulnerability could allow a remote attacker to bypass authentication and perform cross-site scripting...
ROS-20260513-73-0007
Vulnerability in rubygem-rack related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260513-73-0006
Vulnerability in rubygem-rack related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260513-73-0002
Vulnerability in rubygem-rack related to permissive regular expressions. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...
ROS-20260513-73-0003
Vulnerability in rubygem-rack related to uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260513-73-0004
Vulnerability in rubygem-rack related to permissive regular expressions. Exploitation of the vulnerability may allow a remote attacker to gain unauthorized access to protected information...