This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-05-02 10:37:19 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
2fdb053c-ca25-11ed-9d7e-080027f5fec9 | rack -- possible denial of service vulnerability in header parsing ooooooo_q reports:
Discovery 2023-03-13 Entry 2023-03-24 rubygem-rack < 3.0.6.1,3 rubygem-rack22 < 2.2.6.6,3 rubygem-rack16 < 1.6.14 CVE-2023-27539 https://discuss.rubyonrails.org/t/cve-2023-27539-possible-denial-of-service-vulnerability-in-racks-header-parsing/82466 |
f0798a6a-bbdb-11ed-ba99-080027f5fec9 | rack -- possible DoS vulnerability in multipart MIME parsing Aaron Patterson reports:
Discovery 2023-03-03 Entry 2023-03-06 rubygem-rack < 3.0.4.2,3 rubygem-rack22 < 2.2.6.3,3 rubygem-rack16 < 1.6.14 CVE-2023-27530 https://discuss.rubyonrails.org/t/cve-2023-27530-possible-dos-vulnerability-in-multipart-mime-parsing/82388 |
91be81e7-3fea-11e1-afc7-2c4138874f7d | Multiple implementations -- DoS via hash algorithm collision oCERT reports:
Discovery 2011-12-28 Entry 2012-01-16 Modified 2012-01-20 jruby < 1.6.5.1 ruby ruby+nopthreads ruby+nopthreads+oniguruma ruby+oniguruma < 1.8.7.357,1 rubygem-rack < 1.3.6,3 v8 < 3.8.5 redis le 2.4.6 node < 0.6.7 CVE-2011-4838 CVE-2011-4815 CVE-2011-5036 CVE-2011-5037 http://www.ocert.org/advisories/ocert-2011-003.html http://www.nruns.com/_downloads/advisory28122011.pdf |
95176ba5-9796-11ed-bfbf-080027f5fec9 | rack -- Multiple vulnerabilities Aaron Patterson reports:
Discovery 2023-01-17 Entry 2023-01-19 rubygem-rack < 3.0.4.1,3 rubygem-rack22 < 2.2.6.2,3 rubygem-rack16 < 1.6.14 CVE-2022-44570 CVE-2022-44571 CVE-2022-44572 https://github.com/rack/rack/blob/v3.0.4.1/CHANGELOG.md https://github.com/advisories/GHSA-65f5-mfpf-vfhj https://github.com/advisories/GHSA-93pm-5p5f-3ghx https://github.com/advisories/GHSA-rqv2-275x-2jq5 |
eb8a8978-8dd5-49ce-87f4-49667b2166dd | rubygem-rails -- multiple vulnerabilities Ruby on Rails blog:
Discovery 2015-06-16 Entry 2015-06-17 rubygem-activesupport < 3.2.22 rubygem-activesupport4 < 4.2.2 rubygem-jquery-rails < 3.1.3 rubygem-jquery-rails4 < 4.0.4 rubygem-rack < 1.4.6 rubygem-rack15 < 1.5.4 rubygem-rack16 < 1.6.2 rubygem-rails < 3.2.22 rubygem-rails4 < 4.2.2 rubygem-web-console < 2.1.3 CVE-2015-1840 CVE-2015-3224 CVE-2015-3225 CVE-2015-3226 CVE-2015-3227 http://weblog.rubyonrails.org/2015/6/16/Rails-3-2-22-4-1-11-and-4-2-2-have-been-released-and-more/ |