Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2019-17383: All versions of netaddr | RubyGems.org

The netaddr gem before 2.0.4 for Ruby has misconfigured file permissions, such that a gem install may result in 0777 permissions in the target filesystem.

CVE
#ruby

15 versions since July 25, 2009:

  • 2.0.6 - July 08, 2022 (23 KB)
  • 2.0.5 - October 07, 2021 (23 KB)
  • 2.0.4 - October 03, 2019 (21.5 KB)
  • 2.0.3 - March 23, 2018 (21.5 KB)
  • 2.0.2 - March 23, 2018 (21.5 KB) yanked
  • 2.0.1 - January 22, 2018 (21 KB)
  • 2.0 - January 19, 2018 (21 KB) yanked
  • 1.5.3 - July 08, 2022 (39 KB)
  • 1.5.1 - January 25, 2016 (40.5 KB)
  • 1.5.0 - July 25, 2009 (39.5 KB)
  • 1.4.0 - July 25, 2009 (38.5 KB)
  • 1.3.0 - July 25, 2009 (39 KB)
  • 1.2.0 - July 25, 2009 (36 KB)
  • 1.1.0 - July 25, 2009 (34.5 KB)
  • 1.0.0 - July 25, 2009 (32.5 KB)

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907