VulnerableCode Package Details - pkg:deb/debian/jruby@9.3.9.0%2Bds-8

Search for packages

Vulnerability	Summary	Fixed by
VCID-9x9w-2k98-wydm Aliases: CVE-2023-28756 GHSA-fg7x-g82r-94qc	Ruby Time component ReDoS issue A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.	9.4.8.0+ds-3 Affected by 0 other vulnerabilities.
VCID-uxdx-abx7-fkdy Aliases: CVE-2023-28755 GHSA-hv5j-3h9f-99c2	Ruby URI component ReDoS issue A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1.	9.4.8.0+ds-3 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-9x9w-2k98-wydm
Aliases:
CVE-2023-28756
GHSA-fg7x-g82r-94qc

Ruby Time component ReDoS issue A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2.

9.4.8.0+ds-3
Affected by 0 other vulnerabilities.

VCID-uxdx-abx7-fkdy
Aliases:
CVE-2023-28755
GHSA-hv5j-3h9f-99c2

Ruby URI component ReDoS issue A ReDoS issue was discovered in the URI component through 0.12.0 in Ruby through 3.2.1. The URI parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to URI objects. The fixed versions are 0.12.1, 0.11.1, 0.10.2 and 0.10.0.1.

9.4.8.0+ds-3
Affected by 0 other vulnerabilities.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T12:28:39.702970+00:00	Debian Importer	Affected by	VCID-9x9w-2k98-wydm	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-16T12:10:13.591925+00:00	Debian Importer	Affected by	VCID-uxdx-abx7-fkdy	https://security-tracker.debian.org/tracker/data/json	38.4.0
2026-04-13T08:32:31.824782+00:00	Debian Importer	Affected by	VCID-9x9w-2k98-wydm	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-13T08:19:24.304229+00:00	Debian Importer	Affected by	VCID-uxdx-abx7-fkdy	https://security-tracker.debian.org/tracker/data/json	38.3.0
2026-04-08T19:41:23.125668+00:00	Debian Importer	Affected by	VCID-9x9w-2k98-wydm	https://security-tracker.debian.org/tracker/data/json	38.1.0
2026-04-08T19:32:21.111790+00:00	Debian Importer	Affected by	VCID-uxdx-abx7-fkdy	https://security-tracker.debian.org/tracker/data/json	38.1.0