VulnerableCode Package Details - pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.21&reponame=main

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.21&reponame=main

purl	pkg:apk/alpine/ruby@2.5.2-r0?arch=armv7&distroversion=v3.21&reponame=main

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (2)

Vulnerability	Summary	Aliases
VCID-c3y8-w4b4-3qea	Improper Certificate Validation When two `OpenSSL::X509::Name` objects are compared using `==`, depending on the ordering, non-equal objects may return true. When the first argument is one character longer than the second, or the second argument contains a character that is one less than a character in the same position of the first argument, the result of `==` will be true. This could be leveraged to create an illegitimate certificate that may be accepted as legitimate and then used in signing or encryption operations.	CVE-2018-16395 GHSA-mmrq-6999-72v8
VCID-kamp-zmtx-aqbz	security update	CVE-2018-16396 GHSA-xh4x-ph6p-vmxh

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-03T17:56:16.877601+00:00	Alpine Linux Importer	Fixing	VCID-c3y8-w4b4-3qea	https://secdb.alpinelinux.org/v3.21/main.json	38.1.0
2026-04-01T19:04:04.377541+00:00	Alpine Linux Importer	Fixing	VCID-kamp-zmtx-aqbz	https://secdb.alpinelinux.org/v3.21/main.json	38.0.0