RHEL 7 : rh-ruby26-ruby (RHSA-2021:2230)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2021:2230 advisory. - ruby: NUL injection vulnerability of Fi ...

Continue Reading
CVE-2022-40674

libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. #### Bugs * #### Notes Author| Note ---|--- [sbeattie]() | paraview uses system expat xotcl uses system expat poc ...

Continue Reading
(RHSA-2022:6541) Moderate: php:7.4 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix(es): * Archive_Tar: allows an unserialization attack because phar: is blocked but PHAR: is not blocke ...

Continue Reading

CVSS3 - HIGH

CVSS2 - MEDIUM

(RHSA-2022:6542) Moderate: php:7.4 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fix(es): * Archive_Tar: allows an unserialization attack because phar: is blocked but PHAR: is not blocke ...

Continue Reading

CVSS3 - HIGH

CVSS2 - MEDIUM

ruby:2.7 security, bug fix, and enhancement update

ruby [2.7.6-138] - Upgrade to Ruby 2.7.6. Resolves: rhbz#2109424 - Fix FTBFS due to an incompatible load directive. Related: rhbz#2109424 - Fix a fiddle import test on an optimized glibc on Power ...

Continue Reading

CVSS3 - HIGH

CVSS2 - MEDIUM

(RHSA-2022:6447) Moderate: ruby:2.7 security, bug fix, and enhancement update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. The following packages have been upgraded to a la ...

Continue Reading

CVSS3 - HIGH

CVSS2 - MEDIUM

RHEL 8 : ruby:2.7 (RHSA-2022:6447)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:6447 advisory. - ruby: Regular expression denial of serv ...

Continue Reading
CentOS 8 : ruby:2.7 (CESA-2022:6447)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2022:6447 advisory. - ruby: Regular expression denial of service vulnera ...

Continue Reading

Back to Main

Subscribe for the latest news: