CVE-2017-0900

Publication date

2017-08-31 20:00:00

Family

hackerone

State

PUBLISHED

Description

RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications to cause a denial of service attack against RubyGems clients who have issued a `query` command.