Packages
Get Gentoo!
gentoo.org sites
gentoo.org
Wiki
Bugs
Forums
Packages
Planet
Archives
Sources
Infra Status
Home
Packages
Maintainers
USE flags
Architectures
About
dev-ruby
The dev-ruby category contains libraries and utilities relevant to the Ruby programming language.
Packages
Stabilization
138
Outdated
66
Pull requests
2
Bugs
265
Security
13
Security Bug Reports
<dev-ruby/bundler-2.2.18: dependency confusion (CVE-2020-36327)
798135 - Assigned to Gentoo Security
<dev-ruby/bundler-2.2.33: unexpected code execution in Gemfiles (CVE-2021-43809)
828884 - Assigned to Gentoo Security
<dev-ruby/actionpack-{6.0.4.3,6.1.4.3}: open redirect vulnerability
829219 - Assigned to Gentoo Security
<dev-ruby/rails-{5.2.6.2,6.0.4.6,6.1.4.6,7.0.2.2}: information leak between requests
833150 - Assigned to Gentoo Security
<dev-ruby/yajl-ruby-1.4.2: heap corruption with very large inputs
837542 - Assigned to Gentoo Security
<dev-ruby/rails-{5.2.8.1,6.0.5.1,6.1.6.1,7.0.3.1}: Possible RCE escalation bug with Serialized Columns in Active Record
857840 - Assigned to Gentoo Security
<dev-ruby/nokogiri-1.13.10: denial of service
884863 - Assigned to Gentoo Security
<dev-ruby/rails-html-sanitizer-1.4.4: multiple vulnerabilities
886023 - Assigned to Gentoo Security
<dev-ruby/loofah-2.19.1: multiple vulnerabilities
886025 - Assigned to Gentoo Security
<dev-ruby/rack-{2.2.8.1,3.0.9.1}: multiple vulnerabilities
925208 - Assigned to Gentoo Security
<dev-ruby/yard-0.9.36: XSS vulnerability
926069 - Assigned to Gentoo Security
<dev-ruby/rails-{6.1.7.7,7.0.8.1,7.1.3.2}: multiple vulnerabilities
926087 - Assigned to Gentoo Security
<dev-ruby/rexml-3.2.8: Denial of Service
932013 - Assigned to Gentoo Security
Contact Information
Please file new vulnerability reports on
Gentoo Bugzilla
and assign them to the Gentoo Security product and Vulnerabilities component.