2025-01-09 00:33:47
hackerone
PUBLISHED
There is a vulnerability in ActiveSupport if the new bytesplice method is called on a SafeBuffer with untrusted user input.