Packages
Get Gentoo!
gentoo.org sites
gentoo.org
Wiki
Bugs
Forums
Packages
Planet
Archives
Sources
Infra Status
Home
Packages
Maintainers
USE flags
Architectures
About
Gentoo Project
Ruby Project
Packages
686
Stabilization
170
Outdated
59
Pull requests
4
Bugs
287
Security
12
Changelog
Security Bug Reports
<dev-ruby/bundler-2.2.18: dependency confusion (CVE-2020-36327)
798135 - Assigned to Gentoo Security
<dev-ruby/bundler-2.2.33: unexpected code execution in Gemfiles (CVE-2021-43809)
828884 - Assigned to Gentoo Security
<dev-ruby/yajl-ruby-1.4.2: heap corruption with very large inputs
837542 - Assigned to Gentoo Security
<dev-ruby/rails-7.1.1: XSS within Route Error Page
878495 - Assigned to Gentoo Security
<dev-ruby/dalli-3.2.3: code injection via flush_all
882077 - Assigned to Gentoo Security
<dev-ruby/nokogiri-1.13.10: denial of service
884863 - Assigned to Gentoo Security
<dev-ruby/rails-html-sanitizer-1.4.4: multiple vulnerabilities
886023 - Assigned to Gentoo Security
<dev-ruby/loofah-2.19.1: multiple vulnerabilities
886025 - Assigned to Gentoo Security
<dev-ruby/yard-0.9.36: XSS vulnerability
926069 - Assigned to Gentoo Security
<dev-ruby/rdoc-6.6.3.1: RCE vulnerability with .rdoc_options in RDoc
927565 - Assigned to Gentoo Security
dev-lang/ruby: Multiple Vulnerabilities
930533 - Assigned to Gentoo Security
Contact Information
Please file new vulnerability reports on
Gentoo Bugzilla
and assign them to the Gentoo Security product and Vulnerabilities component.