VulnerableCode Package Details - pkg:apk/alpine/ruby@2.4.10-r0?arch=x86

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-5fqj-uwnz-93af	Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.	CVE-2019-15845
VCID-d6tn-s1q2-a3hc	Unsafe object creation in json RubyGem The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269/GHSA-x457-cw4h-hq5f, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsing methods can lead to creation of a malicious object within the interpreter, with adverse effects that are application-dependent.	CVE-2020-10663 GHSA-jphg-qwrw-7w9g
VCID-f6d8-e8tp-c3am	Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.	CVE-2019-16255 GHSA-ph7w-p94x-9vvw
VCID-kp26-vpgn-k7az	Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.	CVE-2019-16201
VCID-y56y-5am7-wkhr	Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.	CVE-2019-16254 GHSA-w9fp-2996-hhwx

Vulnerability

Summary

Aliases

VCID-5fqj-uwnz-93af

Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.

CVE-2019-15845

VCID-d6tn-s1q2-a3hc

Unsafe object creation in json RubyGem The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269/GHSA-x457-cw4h-hq5f, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsing methods can lead to creation of a malicious object within the interpreter, with adverse effects that are application-dependent.

CVE-2020-10663
GHSA-jphg-qwrw-7w9g

VCID-f6d8-e8tp-c3am

Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.

CVE-2019-16255
GHSA-ph7w-p94x-9vvw

VCID-kp26-vpgn-k7az

Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.

CVE-2019-16201

VCID-y56y-5am7-wkhr

Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.

CVE-2019-16254
GHSA-w9fp-2996-hhwx

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T19:26:55.741078+00:00	Alpine Linux Importer	Fixing	VCID-kp26-vpgn-k7az	https://secdb.alpinelinux.org/v3.7/main.json	38.0.0
2026-04-01T19:24:57.259877+00:00	Alpine Linux Importer	Fixing	VCID-f6d8-e8tp-c3am	https://secdb.alpinelinux.org/v3.7/main.json	38.0.0
2026-04-01T19:10:57.760137+00:00	Alpine Linux Importer	Fixing	VCID-d6tn-s1q2-a3hc	https://secdb.alpinelinux.org/v3.7/main.json	38.0.0
2026-04-01T19:05:35.941548+00:00	Alpine Linux Importer	Fixing	VCID-y56y-5am7-wkhr	https://secdb.alpinelinux.org/v3.7/main.json	38.0.0
2026-04-01T18:47:57.271963+00:00	Alpine Linux Importer	Fixing	VCID-5fqj-uwnz-93af	https://secdb.alpinelinux.org/v3.7/main.json	38.0.0