Search for packages
| purl | pkg:gem/time@0.1.1 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
| This package is not known to be affected by vulnerabilities. | ||
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-q5ek-4e1r-eyeb | A ReDoS issue was discovered in the Time component through 0.2.1 in Ruby through 3.2.1. The Time parser mishandles invalid URLs that have specific characters. It causes an increase in execution time for parsing strings to Time objects. The fixed versions are 0.1.1 and 0.2.2. |
CVE-2023-28756
GHSA-fg7x-g82r-94qc |
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2025-07-03T18:41:43.375293+00:00 | GitLab Importer | Fixing | VCID-q5ek-4e1r-eyeb | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/time/CVE-2023-28756.yml | 37.0.0 |
| 2025-07-03T16:52:56.960082+00:00 | GHSA Importer | Fixing | VCID-q5ek-4e1r-eyeb | https://github.com/advisories/GHSA-fg7x-g82r-94qc | 37.0.0 |
| 2025-07-01T18:14:03.372273+00:00 | GitLab Importer | Fixing | VCID-q5ek-4e1r-eyeb | https://gitlab.com/gitlab-org/advisories-community/-/blob/main/gem/time/CVE-2023-28756.yml | 36.1.3 |
| 2025-07-01T12:15:11.009516+00:00 | GithubOSV Importer | Fixing | VCID-q5ek-4e1r-eyeb | https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/03/GHSA-fg7x-g82r-94qc/GHSA-fg7x-g82r-94qc.json | 36.1.3 |