2167 matches found
OPENSUSE-SU-2024:14172-1 ruby3.3-rubygem-minitar-0.9-1.17 on GA media
These are all security issues fixed in the ruby3.3-rubygem-minitar-0.9-1.17 package on the GA media of openSUSE Tumbleweed...
rubygem-uri: ReDoS vulnerability - upstream's incomplete fix for CVE-2023-28755
A flaw was found in the rubygem URI. The URI parser mishandles invalid URLs that have specific characters, which causes an increase in execution time parsing strings to URI objects. This issue may result in a regular expression denial of service ReDoS...
ruby: Buffer overread vulnerability in StringIO
A buffer overread flaw was found in rubygem StringIO. The ungetbyte and ungetc methods on a StringIO object can read past the end of a string, and a subsequent call to StringIO.gets may return the memory value...
OESA-2024-1778 rubygem-actionpack security update
Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling easy unit/integration testing that doesn't require a browser. Security Fixes: Action Pack is a framework for handling and responding to web requests. Und...
OESA-2024-1775 rubygem-actionview security update
Simple, battle-tested conventions and helpers for building web pages. Security Fixes: A flaw was found in Rails. rails-ujs may allow an attacker to perform Cross-Site Scripting XSS, which could lead to stolen information, phishing attacks, and other types of attacks.CVE-2023-23913...
Malicious code in forgiving-nil (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in fluent_plugin-statsd-output (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-6478 Malicious code in activerecord_databasevalidations (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
Malicious code in acception_subscriber (RubyGems)
--- -= Per source details. Do not edit below this line.=-...
OPENSUSE-SU-2024:14072-1 ruby3.3-rubygem-fluentd-1.17.0-1.1 on GA media
These are all security issues fixed in the ruby3.3-rubygem-fluentd-1.17.0-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:14075-1 ruby3.3-rubygem-sprockets-3.7-3.7.3-1.1 on GA media
These are all security issues fixed in the ruby3.3-rubygem-sprockets-3.7-3.7.3-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:14068-1 ruby3.3-rubygem-actiontext-7.0-7.0.8.4-1.1 on GA media
These are all security issues fixed in the ruby3.3-rubygem-actiontext-7.0-7.0.8.4-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:14071-1 ruby3.3-rubygem-activesupport-7.0-7.0.8.4-1.1 on GA media
These are all security issues fixed in the ruby3.3-rubygem-activesupport-7.0-7.0.8.4-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:14074-1 ruby3.3-rubygem-rails-7.0-7.0.8.4-1.1 on GA media
These are all security issues fixed in the ruby3.3-rubygem-rails-7.0-7.0.8.4-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:14067-1 ruby3.3-rubygem-actionpack-7.0-7.0.8.4-1.1 on GA media
These are all security issues fixed in the ruby3.3-rubygem-actionpack-7.0-7.0.8.4-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:12805-1 ruby3.1-rubygem-rack-3.0.7-1.1 on GA media
These are all security issues fixed in the ruby3.1-rubygem-rack-3.0.7-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:13433-1 ruby3.2-rubygem-rails-7.0-7.0.8-1.1 on GA media
These are all security issues fixed in the ruby3.2-rubygem-rails-7.0-7.0.8-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:12766-1 ruby3.1-rubygem-activerecord-7.0-7.0.4.1-1.1 on GA media
These are all security issues fixed in the ruby3.1-rubygem-activerecord-7.0-7.0.4.1-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:12397-1 ruby3.1-rubygem-rack-2.2-2.2.4-1.1 on GA media
These are all security issues fixed in the ruby3.1-rubygem-rack-2.2-2.2.4-1.1 package on the GA media of openSUSE Tumbleweed...
OPENSUSE-SU-2024:11354-1 ruby2.7-rubygem-sprockets-4.0.2-1.7 on GA media
These are all security issues fixed in the ruby2.7-rubygem-sprockets-4.0.2-1.7 package on the GA media of openSUSE Tumbleweed...