AVG-2556 log
| Package | ruby2.7 |
| Status | Fixed |
| Severity | Medium |
| Type | multiple issues |
| Affected | 2.7.4-2 |
| Fixed | 2.7.5-1 |
| Current | 2.7.8-1 [extra] |
| Ticket | None |
| Created | Mon Nov 15 10:32:01 2021 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2021-41819 | Medium | Yes | Content spoofing | A security issue has been found in Ruby before versions 3.0.3, 2.7.5 and 2.6.9. A cookie prefix spoofing vulnerability was discovered in CGI::Cookie.parse... |
| CVE-2021-41817 | Low | Yes | Denial of service | A security issue has been found in Ruby before versions 3.0.3, 2.7.5 and 2.6.9. In the Ruby "date" gem before versions 3.2.1, 3.1.2, 3.0.2, and 2.0.1, there... |