pkg:freebsd/ruby27
Type
freebsd
Name
ruby27
Known advisories, vulnerabilities and fixes for ruby27 package.
- Repository
- pkgs.org
Critical
1
High
4
Medium
2
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 2.7.6,1 |
CVE-2022-28739
|
 FREEBSD:06ED6A49-BAD4-11EC-9CFE-0800270512F4
|
Ruby -- Buffer overrun in String-to-Float conversion | high |
2022-04-12T00:00:00
(2 years ago) |
|
| Affected | < 2.7.5,1 |
CVE-2021-41816
|
FREEBSD:2C6AF5C3-4D36-11EC-A539-0800270512F4
|
rubygem-cgi -- buffer overrun in CGI.escape_html | critical |
2021-11-24T00:00:00
(2 years ago) |
|
| Affected | < 2.7.5,1 |
CVE-2021-41819
|
FREEBSD:4548EC97-4D38-11EC-A539-0800270512F4
|
rubygem-cgi -- cookie prefix spoofing in CGI::Cookie.parse | high |
2021-11-24T00:00:00
(2 years ago) |
|
| Affected | < 2.7.5,1 |
CVE-2021-41817
|
FREEBSD:6916EA94-4628-11EC-BBE2-0800270512F4
|
rubygem-date -- Regular Expression Denial of Service Vunlerability of Date Parsing Methods | high |
2021-11-15T00:00:00
(2 years ago) |
|
| Affected | < 2.7.8,1 |
CVE-2023-28756
|
FREEBSD:6BD2773C-CF1A-11ED-BD44-080027F5FEC9
|
rubygem-time -- ReDoS vulnerability | medium |
2023-03-30T00:00:00
(17 months ago) |
|
| Affected | < 2.7.7,1 |
CVE-2021-33621
|
FREEBSD:84AB03B6-6C20-11ED-B519-080027F5FEC9
|
rubygem-cgi -- HTTP response splitting vulnerability | high |
2022-11-22T00:00:00
(22 months ago) |
|
| Affected | < 2.7.8,1 |
CVE-2023-28755
|
FREEBSD:9B60BBA1-CF18-11ED-BD44-080027F5FEC9
|
rubygem-uri -- ReDoS vulnerability | medium |
2023-03-28T00:00:00
(17 months ago) |