Unrated severityNVD Advisory· Published May 9, 2022· Updated Aug 3, 2024

CVE-2022-28738

Description

A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.

Affected products

Ruby/Rubydescription
osv-coords30 versions
pkg:bitnami/ruby pkg:bitnami/ruby-min pkg:rpm/almalinux/ruby pkg:rpm/almalinux/ruby-default-gems pkg:rpm/almalinux/ruby-devel pkg:rpm/almalinux/ruby-doc pkg:rpm/almalinux/rubygem-abrt pkg:rpm/almalinux/rubygem-abrt-doc pkg:rpm/almalinux/rubygem-bigdecimal pkg:rpm/almalinux/rubygem-bundler pkg:rpm/almalinux/rubygem-io-console pkg:rpm/almalinux/rubygem-irb pkg:rpm/almalinux/rubygem-json pkg:rpm/almalinux/rubygem-minitest pkg:rpm/almalinux/rubygem-mysql2 pkg:rpm/almalinux/rubygem-mysql2-doc pkg:rpm/almalinux/rubygem-pg pkg:rpm/almalinux/rubygem-pg-doc pkg:rpm/almalinux/rubygem-power_assert pkg:rpm/almalinux/rubygem-psych pkg:rpm/almalinux/rubygem-rake pkg:rpm/almalinux/rubygem-rbs pkg:rpm/almalinux/rubygem-rdoc pkg:rpm/almalinux/rubygem-rexml pkg:rpm/almalinux/rubygem-rss pkg:rpm/almalinux/rubygems pkg:rpm/almalinux/rubygems-devel pkg:rpm/almalinux/rubygem-test-unit pkg:rpm/almalinux/rubygem-typeprof pkg:rpm/almalinux/ruby-libs
>= 3.0.0, < 3.0.4+ 29 more
- (no CPE)range: >= 3.0.0, < 3.0.4
- (no CPE)range: >= 3.0.0, < 3.0.4
- (no CPE)range: < 3.0.4-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 3.0.4-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 3.0.4-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 3.0.4-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 0.4.0-1.module_el8.5.0+2595+0c654ebc
- (no CPE)range: < 0.4.0-1.module_el8.5.0+2595+0c654ebc
- (no CPE)range: < 3.0.0-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 2.2.33-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 0.5.7-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 1.3.5-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 2.5.1-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 5.14.2-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 0.5.3-1.module_el8.5.0+2595+0c654ebc
- (no CPE)range: < 0.5.3-1.module_el8.5.0+2595+0c654ebc
- (no CPE)range: < 1.2.3-1.module_el8.5.0+2595+0c654ebc
- (no CPE)range: < 1.2.3-1.module_el8.5.0+2595+0c654ebc
- (no CPE)range: < 1.2.0-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 3.3.2-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 13.0.3-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 1.4.0-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 6.3.3-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 3.2.5-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 0.2.9-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 3.2.33-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 3.2.33-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 3.3.7-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 0.15.2-141.module_el8.6.0+3263+41cde0c0
- (no CPE)range: < 3.0.4-141.module_el8.6.0+3263+41cde0c0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.gentoo.org/glsa/202401-27mitrevendor-advisory
hackerone.com/reports/1220911mitre
security-tracker.debian.org/tracker/CVE-2022-28738mitre
security.netapp.com/advisory/ntap-20220624-0002/mitre
www.ruby-lang.org/en/news/2022/04/12/double-free-in-regexp-compilation-cve-2022-28738/mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000