CVE-2021-41817: Regular Expression Denial of Service Vunlerability of Date Parsing Methods
We have released date gem version 3.2.1, 3.1.2, 3.0.2, and 2.0.1 that include a security fix for a regular expression denial of service vulnerability (ReDoS) on date parsing methods. An attacker can exploit this vulnerability to cause an effective DoS attack. Details Date’s parsing methods includ…
もっと詳しく
