pkg:gem/rubyzip
Type
gem
Name
rubyzip
Known advisories, vulnerabilities and fixes for rubyzip package.
- Repository
- https://rubygems.org/gems/rubyzip
Critical
2
Medium
1
| Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
|---|---|---|---|---|---|---|---|
| Affected | < 1.2.1 |
CVE-2017-5946
|
 RUBYSEC:RUBYZIP-2017-5946
|
Directory traversal vulnerability in rubyzip | critical |
2017-02-27T00:00:00
(7 years ago) |
|
| Fixed | >= 1.2.1 |
CVE-2017-5946
|
RUBYSEC:RUBYZIP-2017-5946
|
Directory traversal vulnerability in rubyzip | critical |
2017-02-27T00:00:00
(7 years ago) |
|
| Affected | < 1.2.2 |
CVE-2017-5946
CVE-2018-1000544 |
RUBYSEC:RUBYZIP-2018-1000544
|
Directory Traversal in rubyzip | critical |
2018-06-14T00:00:00
(6 years ago) |
|
| Fixed | >= 1.2.2 |
CVE-2017-5946
CVE-2018-1000544 |
RUBYSEC:RUBYZIP-2018-1000544
|
Directory Traversal in rubyzip | critical |
2018-06-14T00:00:00
(6 years ago) |
|
| Affected | < 1.3.0 |
CVE-2019-16892
|
RUBYSEC:RUBYZIP-2019-16892
|
Denial of Service in rubyzip ("zip bombs") | medium |
2019-09-12T00:00:00
(5 years ago) |
|
| Fixed | >= 1.3.0 |
CVE-2019-16892
|
RUBYSEC:RUBYZIP-2019-16892
|
Denial of Service in rubyzip ("zip bombs") | medium |
2019-09-12T00:00:00
(5 years ago) |