rpm package
suse/ruby2.5&distro=SUSE Manager Server LTS 4.3
pkg:rpm/suse/ruby2.5&distro=SUSE%20Manager%20Server%20LTS%204.3
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2024-35221 | Med | 4.3 | < 2.5.9-150000.4.49.1 | 2.5.9-150000.4.49.1 | May 29, 2024 | Rubygems.org is the Ruby community's gem hosting service. A Gem publisher can cause a Remote DoS when publishing a Gem. This is due to how Ruby reads the Manifest of Gem files when using Gem::Specification.from_yaml. from_yaml makes use of SafeYAML.load which allows YAML aliases |
- affected < 2.5.9-150000.4.49.1fixed 2.5.9-150000.4.49.1
Rubygems.org is the Ruby community's gem hosting service. A Gem publisher can cause a Remote DoS when publishing a Gem. This is due to how Ruby reads the Manifest of Gem files when using Gem::Specification.from_yaml. from_yaml makes use of SafeYAML.load which allows YAML aliases