VYPR

RubyGems package

bcrypt

pkg:gem/bcrypt

Vulnerabilities (1)

  • CVE-2026-33306Mar 24, 2026
    affected < 3.1.22fixed 3.1.22

    bcrypt-ruby is a Ruby binding for the OpenBSD bcrypt() password hashing algorithm. Prior to version 3.1.22, an integer overflow in the Java BCrypt implementation for JRuby can cause zero iterations in the strengthening loop. Impacted applications must be setting the cost to 31 t