Search for packages
| purl | pkg:rpm/redhat/ruby193-rubygem-ruby_parser@2.0.4-6?arch=el6op |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 1.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-vspr-h3ds-dudq
Aliases: CVE-2013-0162 GHSA-8mvw-22r7-w6fq OSV-90561 |
Incorrect temporary file usage The ruby_parser Gem does not create temporary files securely. In the `diff_pp` function contained in `lib/gauntlet_rubyparser.rb` function, it creates files as `/tmp/a.[pid]` and `/tmp/b.[pid]` which can be predicted and used for either a denial of service (file cannot be overwritten), or to change the contents of files that are writable. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T14:53:16.828453+00:00 | RedHat Importer | Affected by | VCID-vspr-h3ds-dudq | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-0162.json | 38.0.0 |