Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

rubygems

rubygems-update

rubygems

A package (also known as a library) contains a set of functionality that can be invoked by a Ruby program, such as reading and parsing an XML file. We call these packages 'gems' and RubyGems is a tool to install, create, manage and load these packages in your Ruby environment. RubyGems is also a client for RubyGems.org, a public repository of Gems that allows you to publish a Gem that can be shared and used by other developers. See our guide on publishing a Gem at guides.rubygems.org

View on github.com · View on rubygems.org

Security Advisories for rubygems-update in rubygems

Moderate
over 3 years ago

RubyGems HTTPS to HTTP redirect GSA_kwCzR0hTQS0yMjhmLWczaDctM2ZqM84AAe0N

rubygems rubygems-update
Moderate
over 3 years ago

RubyGems does not verify SSL certificate GSA_kwCzR0hTQS01bWdqLW12djgtNDZtd84AAe0M

rubygems rubygems-update
Moderate
over 3 years ago

RubyGems Regular Expression Denial of Service GSA_kwCzR0hTQS05cXZtLTJ2aGYtcTY0Oc4AAYC6

rubygems rubygems-update
Moderate
over 3 years ago

RubyGems Improper Input Validation vulnerability GSA_kwCzR0hTQS1xdjYyLXhmajYtMzJ4bc4AAYCz

rubygems rubygems-update
Moderate
over 3 years ago

RubyGems Path Traversal vulnerability GSA_kwCzR0hTQS04cXhnLW1mZjUtajN3Y84AAUt2

maven, rubygems org.jruby:jruby-stdlib, rubygems-update
High
over 3 years ago

RubyGems vulnerable to DNS hijack attack GSA_kwCzR0hTQS13cDNqLXJ2ZnAtNjI0aM4AATla

rubygems rubygems-update
Moderate
over 3 years ago

RubyGems Regular Expression Denial of Service vulnerability GSA_kwCzR0hTQS05ajdtLXJqcXgtNDh2aM4AATk3

rubygems rubygems-update
High
over 3 years ago

RubyGems Improper Input Validation vulnerability GSA_kwCzR0hTQS1wN2YyLXJyNDItbTl4bc4AATe8

rubygems rubygems-update
Critical
over 3 years ago

RubyGems Improper Verification of Cryptographic Signature vulnerability GSA_kwCzR0hTQS1tYzZqLWg5NDgtdjJwNs4AATbI

maven, rubygems org.jruby:jruby-stdlib, rubygems-update
High
over 3 years ago

RubyGems Deserialization of Untrusted Data vulnerability GSA_kwCzR0hTQS1xajJ3LW13MnItcHYzOc4AATbJ

maven, rubygems org.jruby:jruby-stdlib, rubygems-update
Moderate
over 3 years ago

RubyGems Cross-site Scripting vulnerability GSA_kwCzR0hTQS04N3F4LWc1d2ctbXdtas4AATa0

maven, rubygems org.jruby:jruby-stdlib, rubygems-update
Moderate
over 3 years ago

RubyGems Improper Input Validation vulnerability GSA_kwCzR0hTQS1ndjg2LTQzcnYtNzltMs4AATay

maven, rubygems org.jruby:jruby-stdlib, rubygems-update
High
over 3 years ago

RubyGems Infinite Loop vulnerability GSA_kwCzR0hTQS03NHB2LXY5Z2gtaDI1cM4AASkU

maven, rubygems org.jruby:jruby-stdlib, rubygems-update
High
over 3 years ago

RubyGems may allow a maliciously crafted gem to overwrite files GSA_kwCzR0hTQS1wbTl4LTQzOTItMmMycM4AARmv

rubygems rubygems-update
Critical
over 3 years ago

RubyGems vulnerable to Deserialization of Untrusted Data GSA_kwCzR0hTQS1tcXdyLTRxZjItMmhjds4AARmu

rubygems rubygems-update
High
over 3 years ago

RubyGems has Origin Validation Error vulnerability GSA_kwCzR0hTQS03M3c3LTZ3OWctZ2M4d84AARms

rubygems rubygems-update
Critical
over 3 years ago

RubyGems Code Injection vulnerability GSA_kwCzR0hTQS03Z2NwLTJnbXEtdzN4aM4AARmK

rubygems rubygems-update
High
over 3 years ago

RubyGems Link Following vulnerability GSA_kwCzR0hTQS1neDY5LTZjcDQtaHhyas38Wg

maven, rubygems org.jruby:jruby-stdlib, rubygems-update
Moderate
over 3 years ago

RubyGems file overwrite vulnerability GSA_kwCzR0hTQS05NXZ4LXE0YzItNjRncs2XWw

rubygems rubygems-update
High
over 6 years ago

RubyGems Escape sequence injection in errors MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTR3bTgtZmp2Ny1qNzc0

rubygems rubygems-update
High
over 6 years ago

RubyGems Delete directory using symlink when decompressing tar MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTV4MzItYzltZi00OWNj

rubygems rubygems-update
High
over 6 years ago

Code injection in RubyGems MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTc2d20tNDIycS05Mm1x

rubygems rubygems-update
High
over 6 years ago

RubyGems Escape sequence injection vulnerability in verbose MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLWZyMzItZ3I1Yy14cTVj

rubygems rubygems-update
High
over 6 years ago

RubyGems Escape sequence injection vulnerability in gem owner MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLW1oMzctOGMzZy0zZmdj

rubygems rubygems-update
High
over 6 years ago

RubyGems Escape sequence injection vulnerability in api response handling MDE2OlNlY3VyaXR5QWR2aXNvcnlHSFNBLTNoNHItcGp2Ni1jcGg5

rubygems rubygems-update

Filter by Severity

High 13 Moderate 9 Critical 3