CVE-2016-7798
CVE-2016-7798 affects the Ruby OpenSSL OpenSSL gem. The issue is incorrect handling of the IV in GCM mode when the IV is set before the key, enabling context-dependent attackers to bypass encryption protection. The connected advisories indicate fixed/upgraded versions in various distributions (e....