VYPR

rpm package

suse/ruby2.5&distro=SUSE Manager Proxy LTS 4.3

pkg:rpm/suse/ruby2.5&distro=SUSE%20Manager%20Proxy%20LTS%204.3

Vulnerabilities (1)

  • CVE-2024-35221MedMay 29, 2024
    affected < 2.5.9-150000.4.49.1fixed 2.5.9-150000.4.49.1

    Rubygems.org is the Ruby community's gem hosting service. A Gem publisher can cause a Remote DoS when publishing a Gem. This is due to how Ruby reads the Manifest of Gem files when using Gem::Specification.from_yaml. from_yaml makes use of SafeYAML.load which allows YAML aliases