VulnerableCode Package Details - pkg:ebuild/dev-lang/ruby@2.2.8

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-6jvh-a75e-wfbg	Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.	CVE-2016-2337 GHSA-f58m-77qc-8gjv
VCID-91b7-xx8t-rqhr	Improper Authentication The Basic authentication code in WEBrick library in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows remote attackers to inject terminal emulator escape sequences into its log and possibly execute arbitrary commands via a crafted user name.	CVE-2017-10784 GHSA-369m-2gv6-mw28
VCID-fapg-pt6b-rfb2	Improper Restriction of Operations within the Bounds of a Memory Buffer The decode method in the OpenSSL::ASN1 module in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows attackers to cause a denial of service (interpreter crash) via a crafted string.	CVE-2017-14033 GHSA-v6rp-3r3v-hf4p
VCID-xkd6-jvma-skfk	Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.	CVE-2017-14064 GHSA-954h-8gv7-2q75
VCID-zybm-uuxu-67gh	Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.	CVE-2017-0898 GHSA-wvmx-3rv2-5jgf

Vulnerability

Summary

Aliases

VCID-6jvh-a75e-wfbg

Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.

CVE-2016-2337
GHSA-f58m-77qc-8gjv

VCID-91b7-xx8t-rqhr

Improper Authentication The Basic authentication code in WEBrick library in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows remote attackers to inject terminal emulator escape sequences into its log and possibly execute arbitrary commands via a crafted user name.

CVE-2017-10784
GHSA-369m-2gv6-mw28

VCID-fapg-pt6b-rfb2

Improper Restriction of Operations within the Bounds of a Memory Buffer The decode method in the OpenSSL::ASN1 module in Ruby before 2.2.8, 2.3.x before 2.3.5, and 2.4.x through 2.4.1 allows attackers to cause a denial of service (interpreter crash) via a crafted string.

CVE-2017-14033
GHSA-v6rp-3r3v-hf4p

VCID-xkd6-jvma-skfk

Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.

CVE-2017-14064
GHSA-954h-8gv7-2q75

VCID-zybm-uuxu-67gh

Multiple vulnerabilities have been found in Ruby, the worst of which could lead to the remote execution of arbitrary code.

CVE-2017-0898
GHSA-wvmx-3rv2-5jgf

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-01T13:14:48.640234+00:00	Gentoo Importer	Fixing	VCID-xkd6-jvma-skfk	https://security.gentoo.org/glsa/201710-18	38.0.0
2026-04-01T13:14:48.623404+00:00	Gentoo Importer	Fixing	VCID-fapg-pt6b-rfb2	https://security.gentoo.org/glsa/201710-18	38.0.0
2026-04-01T13:14:48.609230+00:00	Gentoo Importer	Fixing	VCID-91b7-xx8t-rqhr	https://security.gentoo.org/glsa/201710-18	38.0.0
2026-04-01T13:14:48.594983+00:00	Gentoo Importer	Fixing	VCID-zybm-uuxu-67gh	https://security.gentoo.org/glsa/201710-18	38.0.0
2026-04-01T13:14:48.578225+00:00	Gentoo Importer	Fixing	VCID-6jvh-a75e-wfbg	https://security.gentoo.org/glsa/201710-18	38.0.0