Search CVE reports
21 – 21 of 21 results
Some fixes available 4 of 5
A buffer-overread issue was discovered in StringIO 3.0.1, as distributed in Ruby 3.0.x through 3.0.6 and 3.1.x through 3.1.4. The ungetbyte and ungetc methods on a StringIO can read past the end of a string, and a subsequent call...
6 affected packages
ruby2.3, ruby2.5, ruby2.7, ruby3.0, ruby3.1, ruby3.2
| Package | 26.04 LTS | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS |
|---|---|---|---|---|---|
| ruby2.3 | Not in release | Not in release | Not in release | Not in release | — |
| ruby2.5 | Not in release | Not in release | Not in release | Not in release | Fixed |
| ruby2.7 | Not in release | Not in release | Not in release | Fixed | — |
| ruby3.0 | Not in release | Not in release | Fixed | Not in release | — |
| ruby3.1 | Not in release | Not in release | Not in release | Not in release | — |
| ruby3.2 | Not in release | Not affected | Not in release | Not in release | Not in release |