Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
---|---|---|---|---|---|
BDSA-2024-0707 | High | Apr 08, 2024 | Ruby's StringIO gem is vulnerable to memory corruption due to a buffer over-read vulnerability in the `ungetbyte` and `ungetc` methods. The over-read c more... | ||
BDSA-2024-0702 | High | Mar 22, 2024 | Ruby is vulnerable to remote code execution (RCE) via the `.rdoc_options` configuration file. The vulnerability specifically relates to how RDoc parses more... | ||
BDSA-2022-3592 | Low | Dec 14, 2022 | Ruby is vulnerable to URL parsing abuse due to improper handling of URI objects with blank hostnames. This could be leveraged by an attacker against Ru more... |