Filters
Versions
1.9.3
16
2.0.0
15
1.9
13
1.9.2
12
1.8.6
11
1.9.1
11
1.9.3-p0
11
1.9.3-p125
11
1.9.3-p194
11
2.0.0-p0
11
1.8.7
10
2.0
10
2.0.0-rc1
10
2.0.0-rc2
10
1.9.3-p286
8
1.9.3-p383
8
2.0.0-p195
8
2.0.0-preview1
8
2.0.0-preview2
8
1.8.7-p22
7
2.0.0-p247
7
1.8.7-p71
6
1.9.3-p385
6
1.9.3-p392
6
1.8.5
5
1.8.7-p17
5
1.8.7-p72
5
1.8.7-preview1
5
1.8.7-preview2
5
1.8.7-preview3
5
1.8.7-preview4
5
1.9.0
5
1.9.3-p426
5
1.9.3-p429
5
2.1.1
5
1.8.6-p110
4
1.8.6-p36
4
2.1.2
4
2.4.0
4
2.5.0
4
1.8.0
3
1.8.6-p111
3
1.8.6-p114
3
1.8.6-p230
3
1.8.6-preview1
3
1.8.6-preview2
3
1.8.6-preview3
3
1.8.7-330
3
1.9.0-r18423
3
2.0.0-p451
3
2.0.0-p481
3
2.0.0-p576
3
2.1
3
2.1-preview1
3
2.1.3
3
2.2.0
3
2.6.0
3
1.6.8
2
1.8
2
1.8.1
2
1.8.2
2
1.8.3
2
1.8.4
2
1.8.6-p286
2
1.8.7-160
2
1.8.7-173
2
1.8.7-248
2
1.8.7-249
2
1.8.7-299
2
1.8.7-302
2
1.8.7-334
2
1.8.7-p160
2
1.8.7-p173
2
1.8.7-p174
2
1.8.7-p21
2
1.8.7-p248
2
1.8.7-p249
2
1.8.7-p299
2
1.8.7-p301
2
1.8.7-p302
2
1.8.7-p330
2
1.8.7-p334
2
1.8.7-p352
2
1.8.7-p357
2
1.8.7-p358
2
1.8.7-p370
2
1.8.8-dev
2
1.9-r18423
2
1.9.0-0
2
1.9.0-1
2
1.9.0-2
2
1.9.0-20060415
2
1.9.0-20070709
2
1.9.1--p0
2
1.9.1--p129
2
1.9.1--p243
2
1.9.1--p376
2
1.9.1--p429
2
1.9.1--preview_1
2
1.9.1--preview_2
2
1.9.1--rc1
2
1.9.1--rc2
2
1.9.2-dev
2
1.9.2-p136
2
1.9.3-p448
2
1.9.3-p545
2
1.9.3-p547
2
2.0.0-p594
2
2.1.4
2
2.3.0
2
2.4.7
2
2.5.6
2
2.6.4
2
2.7.0
2
1.6
1
1.8.1--9
1
1.8.2-preview2
1
1.8.2-preview3
1
1.8.2-preview4
1
1.8.3-preview1
1
1.8.3-preview2
1
1.8.3-preview3
1
1.8.4-preview1
1
1.8.4-preview2
1
1.8.4-preview3
1
1.8.5-p11
1
1.8.5-p113
1
1.8.5-p114
1
1.8.5-p115
1
1.8.5-p12
1
1.8.5-p2
1
1.8.5-p231
1
1.8.5-p35
1
1.8.5-p52
1
1.8.5-preview1
1
1.8.5-preview2
1
1.8.5-preview3
1
1.8.5-preview4
1
1.8.5-preview5
1
1.8.6-26
1
1.8.6-420
1
1.8.6-p287
1
1.8.7-p371
1
1.8.7-p373
1
1.9.0.1
1
1.9.2-p180
1
1.9.3-dev
1
2.0.0-p353
1
2.0.0-p598
1
2.0.0-p643
1
2.1.0
1
2.1.5
1
2.5.7
1
2.6.0-preview1
1
2.6.5
1
2.6.7
1
2.7.3
1
3.0.0
1
3.0.1
1
Ruby-lang RubyVarious methods in WEBrick::HTTPRequest in Ruby 1.9.2 and 1.8.7 and earlier do not validate the X-Fo…
5.3
First published (updated )
Ruby-lang RubyRuby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 allows HTTP Response Splitting. If …
5.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Canonical Ubuntu LinuxRuby through 2.4.7, 2.5.x through 2.5.6, and 2.6.x through 2.6.4 mishandles path checking within Fil…
6.5
First published (updated )
Rubygems RubygemsRubyGems 2.0.x before 2.0.16, 2.2.x before 2.2.4, and 2.4.x before 2.4.7 does not validate the hostn…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ruby-lang RubyThe openssl extension in Ruby 2.x does not properly maintain the state of process memory after a fil…
5.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ruby-lang Ruby(1) DL and (2) Fiddle in Ruby 1.9 before 1.9.3 patchlevel 426, and 2.0 before 2.0.0 patchlevel 195, …
6.4
First published (updated )
Rubygems RubygemsAlgorithmic complexity vulnerability in Gem::Version::ANCHORED_VERSION_PATTERN in lib/rubygems/versi…
4.3
First published (updated )
Rubygems RubygemsAlgorithmic complexity vulnerability in Gem::Version::VERSION_PATTERN in lib/rubygems/version.rb in …
4.3
First published (updated )
Phusion Passengerext/common/ServerInstanceDir.h in Phusion Passenger gem before 4.0.6 for Ruby allows local users to …
4.4
First published (updated )
Ruby-lang RubyThe OpenSSL::SSL.verify_certificate_identity function in lib/openssl/ssl.rb in Ruby 1.8 before 1.8.7…
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Phusion PassengerPhusion Passenger gem before 3.0.21 and 4.0.x before 4.0.5 for Ruby allows local users to cause a de…
4.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ruby-lang RubyThe rb_get_path_check function in file.c in Ruby 1.9.3 before patchlevel 286 and Ruby 2.0.0 before r…
First published (updated )
Ruby-lang RubyRuby (aka CRuby) 1.9 before 1.9.3-p327 and 2.0 before r37575 computes hash values without properly r…
First published (updated )
Ruby-lang RubyThe safe-level feature in Ruby 1.8.7 allows context-dependent attackers to modify strings via the Na…
4.3
First published (updated )
Ruby-lang RubyRuby 1.8.7 before patchlevel 371, 1.9.3 before patchlevel 286, and 2.0 before revision r37068 allows…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ruby-lang RubyRuby 1.9.3 before patchlevel 286 and 2.0 before revision r37068 allows context-dependent attackers t…
First published (updated )
Ruby-lang RubyRuby before 1.8.6-p114 does not reset the random seed upon forking, which makes it easier for contex…
First published (updated )
Ruby-lang RubyRuby before 1.8.7-p352 does not reset the random seed upon forking, which makes it easier for contex…
First published (updated )
Ruby-lang RubyThe VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as u…
6.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ruby-lang RubyThe safe-level feature in Ruby 1.8.6 through 1.8.6-420, 1.8.7 through 1.8.7-330, and 1.8.8dev allows…
First published (updated )
Ruby-lang RubyThe BigDecimal library in Ruby 1.8.6 before p369 and 1.8.7 before p173 allows context-dependent atta…
First published (updated )
Ruby-lang Rubyext/openssl/ossl_ocsp.c in Ruby 1.8 and 1.9 does not properly check the return value from the OCSP_b…
6.8
First published (updated )
Ruby-lang Rubyresolv.rb in Ruby 1.8.5 and earlier, 1.8.6 before 1.8.6-p287, 1.8.7 before 1.8.7-p72, and 1.9 r18423…
5.8
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ruby-lang RubyThe regular expression engine (regex.c) in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 t…
First published (updated )
Ruby-lang RubyThe (1) Net::ftptls, (2) Net::telnets, (3) Net::imap, (4) Net::pop, and (5) Net::smtp libraries in R…
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Ruby-lang RubyThe connect method in lib/net/http.rb in the (1) Net::HTTP and (2) Net::HTTPS libraries in Ruby 1.8.…
4.3
First published (updated )