ProHoster > Blog > litaba tsa inthanete > Litokollo tse lokisoang tsa Ruby 3.1.2, 3.0.4, 2.7.6, 2.6.10 tse nang le bofokoli tse tsitsitseng

Litokollo tse lokisoang tsa Ruby 3.1.2, 3.0.4, 2.7.6, 2.6.10 tse nang le bofokoli tse tsitsitseng

Litokollo tse lokisoang tsa puo ea lenaneo la Ruby 3.1.2, 3.0.4, 2.7.6, 2.6.10 li hlahisitsoe, moo ho felisitsoeng likotsi tse peli:

CVE-2022-28738 ke khoutu e hlophisitsoeng e sa lefelloeng habeli e etsahalang ha khoele e entsoeng e fetisoa ha ho etsoa ntho ea Regexp. Bofokoli bo ka sebelisoa hampe ka ho sebelisa data ea kantle e sa tšepahaleng nthong ea Regexp.
CVE-2022-28739 - Buffer e khaphatseha ka har'a khouto ea phetoho ea khoele-to-float. Ho ba kotsing ho ka sebelisoa hampe ho fihlella litaba tsa memori ha o sebetsana le data e sa tšepahaleng ea kantle ka mekhoa e kang Kernel#Float le String#to_f.

Ho beha maikutlo o hloka kena.