Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:maven/org.jruby/jruby-stdlib@9.1.16.0
purl pkg:maven/org.jruby/jruby-stdlib@9.1.16.0
Vulnerabilities affecting this package (0)
Vulnerability Summary Fixed by
This package is not known to be affected by vulnerabilities.
Vulnerabilities fixed by this package (7)
Vulnerability Summary Aliases
VCID-8d7n-bfhu-dkfd Loop with Unreachable Exit Condition (Infinite Loop) RubyGems contains an infinite loop caused by negative size vulnerability in ruby gem package tar header that can result in a negative size could cause an infinite loop. CVE-2018-1000075
GHSA-74pv-v9gh-h25p
VCID-8hm4-c4w4-gfen Cross-site Scripting RubyGems contains a Cross Site Scripting (XSS) vulnerability in gem server display of homepage attribute that can result in XSS. This attack appears to be exploitable by the victim browsing to a malicious gem on a vulnerable gem server. CVE-2018-1000078
GHSA-87qx-g5wg-mwmj
VCID-9t45-d5mf-3uar Path Traversal RubyGems contains a Directory Traversal vulnerability in gem installation that can result in the gem being able to write to arbitrary filesystem locations during installation. This attack appears to be exploitable by a victim installing a malicious gem. CVE-2018-1000079
GHSA-8qxg-mff5-j3wc
VCID-af1f-xwwy-jfa8 RubyGems contains a Deserialization of Untrusted Data vulnerability in owner command that can result in code execution. This attack appears to be exploitable when the victim runs the `gem owner` command on a gem with a specially crafted YAML file. CVE-2018-1000074
GHSA-qj2w-mw2r-pv39
VCID-mamm-cvdr-subf RubyGems contains an Improper Input Validation vulnerability in ruby gems specification homepage attribute that can result in a malicious gem being able to set an invalid homepage URL. CVE-2018-1000077
GHSA-gv86-43rv-79m2
VCID-tq93-h2ag-s3bx Path Traversal RubyGems contains a Directory Traversal vulnerability in install_location function of `package.rb` that can result in path traversal when writing to a symlinked basedir outside the root. CVE-2018-1000073
GHSA-gx69-6cp4-hxrj
VCID-w4ns-f42m-pyec RubyGems contains an Improper Verification of Cryptographic Signature vulnerability in `package.rb` that can result in a mis-signed gem being installed, as the tarball would contain multiple gem signatures. CVE-2018-1000076
GHSA-mc6j-h948-v2p6

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-11T23:07:54.014864+00:00 GitLab Importer Fixing VCID-9t45-d5mf-3uar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000079.yml 38.3.0
2026-04-11T23:07:30.582350+00:00 GitLab Importer Fixing VCID-8hm4-c4w4-gfen https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000078.yml 38.3.0
2026-04-11T23:07:24.962751+00:00 GitLab Importer Fixing VCID-mamm-cvdr-subf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000077.yml 38.3.0
2026-04-11T23:07:16.784276+00:00 GitLab Importer Fixing VCID-af1f-xwwy-jfa8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000074.yml 38.3.0
2026-04-11T23:07:13.824251+00:00 GitLab Importer Fixing VCID-w4ns-f42m-pyec https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000076.yml 38.3.0
2026-04-11T23:05:01.502293+00:00 GitLab Importer Fixing VCID-8d7n-bfhu-dkfd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000075.yml 38.3.0
2026-04-11T23:04:08.310687+00:00 GitLab Importer Fixing VCID-tq93-h2ag-s3bx https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000073.yml 38.3.0
2026-04-04T14:30:36.907223+00:00 GHSA Importer Fixing VCID-9t45-d5mf-3uar https://github.com/advisories/GHSA-8qxg-mff5-j3wc 38.1.0
2026-04-04T14:30:11.693158+00:00 GHSA Importer Fixing VCID-af1f-xwwy-jfa8 https://github.com/advisories/GHSA-qj2w-mw2r-pv39 38.1.0
2026-04-04T14:30:11.593901+00:00 GHSA Importer Fixing VCID-w4ns-f42m-pyec https://github.com/advisories/GHSA-mc6j-h948-v2p6 38.1.0
2026-04-04T14:30:11.401566+00:00 GHSA Importer Fixing VCID-8hm4-c4w4-gfen https://github.com/advisories/GHSA-87qx-g5wg-mwmj 38.1.0
2026-04-04T14:30:11.354177+00:00 GHSA Importer Fixing VCID-mamm-cvdr-subf https://github.com/advisories/GHSA-gv86-43rv-79m2 38.1.0
2026-04-04T14:30:02.172543+00:00 GHSA Importer Fixing VCID-8d7n-bfhu-dkfd https://github.com/advisories/GHSA-74pv-v9gh-h25p 38.1.0
2026-04-02T23:16:19.523741+00:00 GitLab Importer Fixing VCID-9t45-d5mf-3uar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000079.yml 38.1.0
2026-04-02T23:15:48.407250+00:00 GitLab Importer Fixing VCID-8hm4-c4w4-gfen https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000078.yml 38.1.0
2026-04-02T23:15:40.074127+00:00 GitLab Importer Fixing VCID-mamm-cvdr-subf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000077.yml 38.1.0
2026-04-02T23:15:29.347235+00:00 GitLab Importer Fixing VCID-af1f-xwwy-jfa8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000074.yml 38.1.0
2026-04-02T23:15:24.781763+00:00 GitLab Importer Fixing VCID-w4ns-f42m-pyec https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000076.yml 38.1.0
2026-04-02T23:13:18.048678+00:00 GitLab Importer Fixing VCID-8d7n-bfhu-dkfd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000075.yml 38.1.0
2026-04-02T23:12:29.937339+00:00 GitLab Importer Fixing VCID-tq93-h2ag-s3bx https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000073.yml 38.1.0
2026-04-01T16:01:23.838587+00:00 GHSA Importer Fixing VCID-tq93-h2ag-s3bx https://github.com/advisories/GHSA-gx69-6cp4-hxrj 38.0.0
2026-04-01T13:11:50.409731+00:00 GithubOSV Importer Fixing VCID-8d7n-bfhu-dkfd https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-74pv-v9gh-h25p/GHSA-74pv-v9gh-h25p.json 38.0.0
2026-04-01T13:09:58.115964+00:00 GithubOSV Importer Fixing VCID-8hm4-c4w4-gfen https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-87qx-g5wg-mwmj/GHSA-87qx-g5wg-mwmj.json 38.0.0
2026-04-01T13:09:23.210705+00:00 GithubOSV Importer Fixing VCID-tq93-h2ag-s3bx https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-gx69-6cp4-hxrj/GHSA-gx69-6cp4-hxrj.json 38.0.0
2026-04-01T13:09:18.858803+00:00 GithubOSV Importer Fixing VCID-af1f-xwwy-jfa8 https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-qj2w-mw2r-pv39/GHSA-qj2w-mw2r-pv39.json 38.0.0
2026-04-01T13:08:29.362874+00:00 GithubOSV Importer Fixing VCID-9t45-d5mf-3uar https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-8qxg-mff5-j3wc/GHSA-8qxg-mff5-j3wc.json 38.0.0
2026-04-01T13:08:08.967709+00:00 GithubOSV Importer Fixing VCID-mamm-cvdr-subf https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-gv86-43rv-79m2/GHSA-gv86-43rv-79m2.json 38.0.0
2026-04-01T13:08:02.572631+00:00 GithubOSV Importer Fixing VCID-w4ns-f42m-pyec https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/05/GHSA-mc6j-h948-v2p6/GHSA-mc6j-h948-v2p6.json 38.0.0
2026-04-01T12:50:39.262042+00:00 GitLab Importer Fixing VCID-9t45-d5mf-3uar https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000079.yml 38.0.0
2026-04-01T12:50:35.629118+00:00 GitLab Importer Fixing VCID-8hm4-c4w4-gfen https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000078.yml 38.0.0
2026-04-01T12:50:34.751608+00:00 GitLab Importer Fixing VCID-mamm-cvdr-subf https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000077.yml 38.0.0
2026-04-01T12:50:33.709843+00:00 GitLab Importer Fixing VCID-af1f-xwwy-jfa8 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000074.yml 38.0.0
2026-04-01T12:50:33.195006+00:00 GitLab Importer Fixing VCID-w4ns-f42m-pyec https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000076.yml 38.0.0
2026-04-01T12:50:18.650267+00:00 GitLab Importer Fixing VCID-8d7n-bfhu-dkfd https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000075.yml 38.0.0
2026-04-01T12:50:12.993524+00:00 GitLab Importer Fixing VCID-tq93-h2ag-s3bx https://gitlab.com/gitlab-org/advisories-community/-/blob/main/maven/org.jruby/jruby-stdlib/CVE-2018-1000073.yml 38.0.0