CVE-2024-27280
Published: 27 March 2024
[Buffer overread vulnerability in StringIO]
Notes
| Author | Note |
|---|---|
| mdeslaur | commit in 3.0.1.2 appears to be a bug fix which is unrelated to this CVE. |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
jruby Launchpad, Ubuntu, Debian |
bionic |
Needs triage
|
| focal |
Needs triage
|
|
| jammy |
Does not exist
|
|
| mantic |
Needs triage
|
|
| trusty |
Needs triage
|
|
| upstream |
Needs triage
|
|
| xenial |
Needs triage
|
|
|
ruby2.3 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| upstream |
Needs triage
|
|
| xenial |
Needs triage
|
|
|
ruby2.5 Launchpad, Ubuntu, Debian |
bionic |
Needs triage
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| upstream |
Needs triage
|
|
|
ruby2.7 Launchpad, Ubuntu, Debian |
focal |
Needed
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| upstream |
Needs triage
|
|
|
ruby3.0 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Needed
|
|
| mantic |
Does not exist
|
|
| upstream |
Needs triage
|
|
|
ruby3.1 Launchpad, Ubuntu, Debian |
focal |
Does not exist
|
| jammy |
Does not exist
|
|
| mantic |
Needed
|
|
| upstream |
Needs triage
|
|
|
Patches: upstream: https://github.com/ruby/stringio/commit/c58c5f54f1eab99665ea6a161d29ff6a7490afc8 upstream: https://github.com/ruby/stringio/commit/0e596524097706263d10900ca180898e4a8f5233 |
||
|
ruby3.2 Launchpad, Ubuntu, Debian |
bionic |
Does not exist
|
| focal |
Does not exist
|
|
| jammy |
Does not exist
|
|
| mantic |
Does not exist
|
|
| trusty |
Does not exist
|
|
| upstream |
Needs triage
|
|
| xenial |
Does not exist
|
|