Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:deb/debian/ruby-mail@2.4.4-1?distro=trixie
purl pkg:deb/debian/ruby-mail@2.4.4-1?distro=trixie
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (2)
Vulnerability Summary Aliases
VCID-3xkv-ckqz-r3dx Improper Input Validation The Mail gem for Ruby allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) sendmail or (2) exim delivery. CVE-2012-2140
GHSA-rp63-jfmw-532w
OSV-81632
VCID-z8cv-3uer-pqbm Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Directory traversal vulnerability in lib/mail/network/delivery_methods/file_delivery.rb in the Mail gem for Ruby allows remote attackers to read arbitrary files via a .. (dot dot) in the to parameter. CVE-2012-2139
GHSA-cj92-c4fj-w9c5
OSV-81631

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-16T11:57:56.928154+00:00 Debian Importer Fixing VCID-z8cv-3uer-pqbm https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-16T11:54:57.052782+00:00 Debian Importer Fixing VCID-3xkv-ckqz-r3dx https://security-tracker.debian.org/tracker/data/json 38.4.0
2026-04-13T08:10:10.031708+00:00 Debian Importer Fixing VCID-z8cv-3uer-pqbm https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-13T08:08:00.356589+00:00 Debian Importer Fixing VCID-3xkv-ckqz-r3dx https://security-tracker.debian.org/tracker/data/json 38.3.0
2026-04-03T07:52:17.357930+00:00 Debian Importer Fixing VCID-3xkv-ckqz-r3dx https://security-tracker.debian.org/tracker/data/json 38.1.0
2026-04-03T07:52:17.312247+00:00 Debian Importer Fixing VCID-z8cv-3uer-pqbm https://security-tracker.debian.org/tracker/data/json 38.1.0