VulnerableCode Package Details - pkg:apk/alpine/ruby@3.0.3-r0?arch=aarch64&distroversion=v3.23&reponame=main

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:apk/alpine/ruby@3.0.3-r0?arch=aarch64&distroversion=v3.23&reponame=main

purl	pkg:apk/alpine/ruby@3.0.3-r0?arch=aarch64&distroversion=v3.23&reponame=main

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (3)

Vulnerability	Summary	Aliases
VCID-1vp9-6q85-5ffv	Reliance on Cookies without Validation and Integrity Checking in a Security Decision CGI::Cookie.parse in Ruby mishandles security prefixes in cookie names. This also affects the CGI gem for Ruby.	CVE-2021-41819 GHSA-4vf4-qmvg-mh7h
VCID-gfjn-m9zp-57c5	Duplicate This advisory duplicates another.	CVE-2021-41816 GHSA-5cqm-crxm-6qpv GMS-2021-17
VCID-mkq9-21q7-6kg6	Regular expression denial of service vulnerability (ReDoS) in date Date includes a ReDoS vulnerability.	CVE-2021-41817 GHSA-qg54-694p-wgpp

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T19:05:04.922452+00:00	Alpine Linux Importer	Fixing	VCID-gfjn-m9zp-57c5	https://secdb.alpinelinux.org/v3.23/main.json	38.0.0
2026-04-01T19:04:54.934796+00:00	Alpine Linux Importer	Fixing	VCID-1vp9-6q85-5ffv	https://secdb.alpinelinux.org/v3.23/main.json	38.0.0
2026-04-01T19:03:46.391718+00:00	Alpine Linux Importer	Fixing	VCID-mkq9-21q7-6kg6	https://secdb.alpinelinux.org/v3.23/main.json	38.0.0