This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-09-15 18:04:00 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
eb8a8978-8dd5-49ce-87f4-49667b2166dd | rubygem-rails -- multiple vulnerabilities Ruby on Rails blog:
Discovery 2015-06-16 Entry 2015-06-17 rubygem-activesupport < 3.2.22 rubygem-activesupport4 < 4.2.2 rubygem-jquery-rails < 3.1.3 rubygem-jquery-rails4 < 4.0.4 rubygem-rack < 1.4.6 rubygem-rack15 < 1.5.4 rubygem-rack16 < 1.6.2 rubygem-rails < 3.2.22 rubygem-rails4 < 4.2.2 rubygem-web-console < 2.1.3 CVE-2015-1840 CVE-2015-3224 CVE-2015-3225 CVE-2015-3226 CVE-2015-3227 http://weblog.rubyonrails.org/2015/6/16/Rails-3-2-22-4-1-11-and-4-2-2-have-been-released-and-more/ |
2fdb053c-ca25-11ed-9d7e-080027f5fec9 | rack -- possible denial of service vulnerability in header parsing ooooooo_q reports:
Discovery 2023-03-13 Entry 2023-03-24 rubygem-rack < 3.0.6.1,3 rubygem-rack22 < 2.2.6.6,3 rubygem-rack16 < 1.6.14 CVE-2023-27539 https://discuss.rubyonrails.org/t/cve-2023-27539-possible-denial-of-service-vulnerability-in-racks-header-parsing/82466 |
95176ba5-9796-11ed-bfbf-080027f5fec9 | rack -- Multiple vulnerabilities Aaron Patterson reports:
Discovery 2023-01-17 Entry 2023-01-19 rubygem-rack < 3.0.4.1,3 rubygem-rack22 < 2.2.6.2,3 rubygem-rack16 < 1.6.14 CVE-2022-44570 CVE-2022-44571 CVE-2022-44572 https://github.com/rack/rack/blob/v3.0.4.1/CHANGELOG.md https://github.com/advisories/GHSA-65f5-mfpf-vfhj https://github.com/advisories/GHSA-93pm-5p5f-3ghx https://github.com/advisories/GHSA-rqv2-275x-2jq5 |
66e4dc99-28b3-11ea-8dde-08002728f74c | rack -- information leak / session hijack vulnerability National Vulnerability Database:
Discovery 2019-12-08 Entry 2019-12-29 rubygem-rack >= 2.0.0 lt 2.0.8,3 rubygem-rack16 >= 1.6.0 lt 1.6.12 https://nvd.nist.gov/vuln/detail/CVE-2019-16782 https://github.com/rack/rack/blob/master/CHANGELOG.md CVE-2019-16782 |
f0798a6a-bbdb-11ed-ba99-080027f5fec9 | rack -- possible DoS vulnerability in multipart MIME parsing Aaron Patterson reports:
Discovery 2023-03-03 Entry 2023-03-06 rubygem-rack < 3.0.4.2,3 rubygem-rack22 < 2.2.6.3,3 rubygem-rack16 < 1.6.14 CVE-2023-27530 https://discuss.rubyonrails.org/t/cve-2023-27530-possible-dos-vulnerability-in-multipart-mime-parsing/82388 |