FLAT-LK0IL – Vulnerability | Fluid Attacks Database

Database

Description

denial of service

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	ruby-addressable	>=0 <2.7.0-2	2.7.0-2
rubygems	addressable	>=2.3.0 <2.8.0	2.8.0
debian 12	ruby-addressable	>=0 <2.7.0-2	2.7.0-2
debian 13	ruby-addressable	>=0 <2.7.0-2	2.7.0-2
debian 14	ruby-addressable	>=0 <2.7.0-2	2.7.0-2
alpm rolling_release	ruby-addressable	>=2.7.0-3 <2.8.0-1	2.8.0-1

Aliases

1. CVE-2021-327402. NVD-2021-327403. OSV-DEBIAN-2021-327404. OSV-2021-327405. GHSA-jxhc-q857-3j6g6. GCVE-2021-327407. SECURITY-TRACKER-CVE-2021-32740

References

1. https://github.com/sporkmonger/addressable/security/advisories/GHSA-jxhc-q857-3j6g2. https://github.com/sporkmonger/addressable/commit/0d8a3127e35886ce9284810a7f2438bff6b43cbc3. https://github.com/sporkmonger/addressable/commit/89c76130ce255c601f642a018cb5fb5a80e679a74. https://github.com/sporkmonger/addressable/commit/92685096b1f7235ed8986c03ce30a24972eed848#diff-fb36d3dc67e6565ffde17e666a98697f48e76dac38fabf1bb9e97cdf3b583d765. https://github.com/rubysec/ruby-advisory-db/blob/master/gems/addressable/CVE-2021-32740.yml6. https://lists.fedoraproject.org/archives/list/[email protected]/message/SDFQM2NHNAZ3NNUQZEJTYECYZYXV4UDS7. https://lists.fedoraproject.org/archives/list/[email protected]/message/WYPVOOQU7UB277UUERJMCNQLRCXRCIQ5

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.