apk package
wolfi/ruby3.2-fluentd-kubernetes-daemonset-1.19-kinesis
pkg:apk/wolfi/ruby3.2-fluentd-kubernetes-daemonset-1.19-kinesis
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2026-35611 | Hig | 7.5 | < 1.19.2.1.1-r3 | 1.19.2.1.1-r3 | Apr 7, 2026 | Addressable is an alternative implementation to the URI implementation that is part of Ruby's standard library. From 2.3.0 to before 2.9.0, within the URI template implementation in Addressable, two classes of URI template generate regular expressions vulnerable to catastrophic b | |
| CVE-2026-33210 | — | < 1.19.2.1.1-r2 | 1.19.2.1.1-r2 | Mar 20, 2026 | Ruby JSON is a JSON implementation for Ruby. From version 2.14.0 to before versions 2.15.2.1, 2.17.1.2, and 2.19.2, a format string injection vulnerability can lead to denial of service attacks or information disclosure, when the allow_duplicate_key: false parsing option is used |
- affected < 1.19.2.1.1-r3fixed 1.19.2.1.1-r3
Addressable is an alternative implementation to the URI implementation that is part of Ruby's standard library. From 2.3.0 to before 2.9.0, within the URI template implementation in Addressable, two classes of URI template generate regular expressions vulnerable to catastrophic b
- CVE-2026-33210Mar 20, 2026affected < 1.19.2.1.1-r2fixed 1.19.2.1.1-r2
Ruby JSON is a JSON implementation for Ruby. From version 2.14.0 to before versions 2.15.2.1, 2.17.1.2, and 2.19.2, a format string injection vulnerability can lead to denial of service attacks or information disclosure, when the allow_duplicate_key: false parsing option is used