4 matches found
CVE-2020-25613
CVE-2020-25613 affects Ruby’s WEBrick HTTP server: transfer-encoding header handling was not sufficiently validated, potentially allowing HTTP Request Smuggling by an attacker bypassing a misconfigured reverse proxy. The issue is present in Ruby versions up to 2.5.8, 2.6.x up to 2.6.6, and 2.7.x ...
CVE-2020-10933
CVE-2020-10933 affects the Ruby interpreter (2.5.x up to 2.5.7, 2.6.x up to 2.6.5, and 2.7.0). The issue occurs in BasicSocket#read_nonblock where the buffer is resized to the requested size but no data is copied, causing the buffer to expose the previous heap contents and potentially expose sens...
CVE-2020-5247
CVE-2020-5247 is a HTTP Response Splitting vulnerability affecting Puma (RubyGem) in versions prior to 4.3.2 and 3.12.3 when untrusted input reaches response headers. An attacker could inject CR/LF sequences to terminate a header and inject new headers or a response body. The issue is mitigated b...
CVE-2016-2338
CVE-2016-2338 describes an exploitable heap overflow in Ruby’s Psych::Emitter.start_document where head is allocated based on the tags array length; specially crafted objects in tags can cause the allocation to exceed bounds. Connected advisories confirm this vulnerability and show the fix in Rub...