apk package
chainguard/logstash-jre-bcfips
pkg:apk/chainguard/logstash-jre-bcfips
Vulnerabilities (43)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-26146 | — | < 8.13.2-r0 | 8.13.2-r0 | Feb 28, 2024 | Rack is a modular Ruby web server interface. Carefully crafted headers can cause header parsing in Rack to take longer than expected resulting in a possible denial of service issue. Accept and Forwarded headers are impacted. Ruby 3.2 has mitigations for this problem, so Rack appl | ||
| CVE-2023-36617 | — | < 8.15.0-r0 | 8.15.0-r0 | Jun 29, 2023 | A ReDoS issue was discovered in the URI component before 0.12.2 for Ruby. The URI parser mishandles invalid URLs that have specific characters. There is an increase in execution time for parsing strings to URI objects with rfc2396_parser.rb and rfc3986_parser.rb. NOTE: this issue | ||
| CVE-2020-16971 | — | < 8.16.0-r0 | 8.16.0-r0 | Dec 9, 2020 | Azure SDK for Java Security Feature Bypass Vulnerability |
- CVE-2024-26146Feb 28, 2024affected < 8.13.2-r0fixed 8.13.2-r0
Rack is a modular Ruby web server interface. Carefully crafted headers can cause header parsing in Rack to take longer than expected resulting in a possible denial of service issue. Accept and Forwarded headers are impacted. Ruby 3.2 has mitigations for this problem, so Rack appl
- CVE-2023-36617Jun 29, 2023affected < 8.15.0-r0fixed 8.15.0-r0
A ReDoS issue was discovered in the URI component before 0.12.2 for Ruby. The URI parser mishandles invalid URLs that have specific characters. There is an increase in execution time for parsing strings to URI objects with rfc2396_parser.rb and rfc3986_parser.rb. NOTE: this issue
- CVE-2020-16971Dec 9, 2020affected < 8.16.0-r0fixed 8.16.0-r0
Azure SDK for Java Security Feature Bypass Vulnerability
Page 3 of 3