Homepage

rubygem-bigdecimal vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the rubygem-bigdecimal package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • M
Resource Exhaustion

*
  • M
Inefficient Regular Expression Complexity

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • H
Inefficient Regular Expression Complexity

<0:3.0.0-163.el9_5
  • M
Covert Timing Channel

*
  • M
Resource Exhaustion

<0:3.1.5-3.module+el9.4.0+22273+463af10f
  • M
Resource Exhaustion

<0:3.1.5-3.module+el9.4.0+22273+463af10f
  • M
Improper Restriction of Recursive Entity References in DTDs ('XML Entity Expansion')

*
  • M
Resource Exhaustion

<0:3.1.5-3.module+el9.4.0+22273+463af10f
  • L
Resource Exhaustion

*
  • M
Arbitrary Code Injection

<0:3.1.1-144.module+el9.4.0+21780+79b7bdb5
  • M
Out-of-bounds Read

<0:3.1.1-144.module+el9.4.0+21780+79b7bdb5
  • M
Buffer Over-read

<0:3.1.1-144.module+el9.4.0+21780+79b7bdb5
  • M
Incorrect Regular Expression

*
  • M
Improper Input Validation

<0:3.0.0-162.el9_4
  • M
Improper Input Validation

<0:3.0.0-162.el9_4
  • M
HTTP Response Splitting

<0:3.0.0-162.el9_4
  • M
Out-of-bounds Read

<0:3.0.0-160.el9_0
  • M
Double Free

<0:3.0.0-160.el9_0