VDB

GCVE-VVD-MAGEIA-2019-408

GCVE-VVD-MAGEIA-2019-408
Advisory Published
Vulnetix · Advisory published December 25, 2019
Updated ruby packages fix security vulnerabilities: It was discovered that Ruby incorrectly handled certain files. An attacker could possibly use this issue to pass path matching what can lead to an unauthorized access (CVE-2019-15845). It was discovered that Ruby incorrectly handled certain regular expressions. An attacker could use this issue to cause a denial of service (CVE-2019-16201). It was discovered that Ruby incorrectly handled certain HTTP headers. An attacker could possibly use this issue to execute arbitrary code (CVE-2019-16254). It was discovered that Ruby incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code (CVE-2019-16255).
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiaruby0 (affected), 2.5.7-20.mga7 (unaffected)

References

Updated ruby packages fix security vulnerabilities
advisory
Updated ruby packages fix security vulnerabilities
issue
Updated ruby packages fix security vulnerabilities
issue
Updated ruby packages fix security vulnerabilities
issue
Updated ruby packages fix security vulnerabilities
issue
Updated ruby packages fix security vulnerabilities
issue
Updated ruby packages fix security vulnerabilities
issue
Updated ruby packages fix security vulnerabilities
advisory

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›