[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2008-2664":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":18,"aliases":19,"duplicate_of":9,"upstream":20,"downstream":21,"duplicates":36,"related":37,"reserved_at":9,"published_at":38,"modified_at":39,"state":40,"summary":41,"references_raw":50,"kevs":237,"epss":238,"epss_history":241,"metrics":496,"affected":501},"CVE-2008-2664","The rb_str_format function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2 allows context-dependent attackers to trigger memory corruption via unspecified vectors related to alloca, a different issue than CVE-2008-2662, CVE-2008-2663, and CVE-2008-2725.  NOTE: as of 20080624, there has been inconsistent usage of multiple CVE identifiers related to Ruby. The CVE description should be regarded as authoritative, although it is likely to change.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":9,"likelihood_of_exploit":9,"capec":17},"CWE-399","Resource Management Errors","Weaknesses in this category are related to improper management of system resources.","category","Draft",[],[],[],[],[22,24,26,28,30,32,34],{"_key":23},"DSA-1612-1",{"_key":25},"DSA-1618-1",{"_key":27},"RHSA-2008:0561",{"_key":29},"RHSA-2008:0562",{"_key":31},"RHSA-2026:7305",{"_key":33},"RHSA-2026:7307",{"_key":35},"RHSA-2026:8838",[],[],"2008-06-24T19:00:00.000Z","2024-08-07T09:05:30.423Z","Modified",{"cisa_kev":42,"cisa_ransomware":42,"cisa_vendor":9,"epss_severity":43,"epss_score":44,"severity":45,"severity_score":46,"severity_version":47,"severity_source":48,"severity_vector":49,"severity_status":40},false,"low",0.05116,"high",7.8,"v2.0","nvd","AV:N/AC:L/Au:N/C:N/I:N/A:C",[51,59,64,69,74,79,83,89,94,98,103,107,111,115,119,125,129,134,139,144,148,153,158,162,166,170,176,181,185,189,194,198,203,207,211,215,220,224,228,233],{"url":52,"sources":53,"tags":55},"http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html",[54,48],"cve.org",[56,57,58],"Vendor Advisory","X Refsource SUSE","Third Party Advisory",{"url":60,"sources":61,"tags":62},"http://support.apple.com/kb/HT2163",[54,48],[63,58],"X Refsource CONFIRM",{"url":65,"sources":66,"tags":67},"http://secunia.com/advisories/31090",[54,48],[58,68],"X Refsource SECUNIA",{"url":70,"sources":71,"tags":72},"http://weblog.rubyonrails.org/2008/6/21/multiple-ruby-security-vulnerabilities",[54,48],[73,58],"X Refsource MISC",{"url":75,"sources":76,"tags":77},"http://www.mandriva.com/security/advisories?name=MDVSA-2008:141",[54,48],[56,78,58],"X Refsource MANDRIVA",{"url":80,"sources":81,"tags":82},"http://secunia.com/advisories/30875",[54,48],[58,68],{"url":84,"sources":85,"tags":86},"https://exchange.xforce.ibmcloud.com/vulnerabilities/43348",[54,48],[87,88,58],"VDB Entry","X Refsource XF",{"url":90,"sources":91,"tags":92},"http://www.vupen.com/english/advisories/2008/1981/references",[54,48],[87,93,58],"X Refsource VUPEN",{"url":95,"sources":96,"tags":97},"http://www.vupen.com/english/advisories/2008/1907/references",[54,48],[87,93,58],{"url":99,"sources":100,"tags":101},"http://www.debian.org/security/2008/dsa-1618",[54,48],[56,102,58],"X Refsource DEBIAN",{"url":104,"sources":105,"tags":106},"http://secunia.com/advisories/31687",[54,48],[58,68],{"url":108,"sources":109,"tags":110},"http://secunia.com/advisories/30894",[54,48],[58,68],{"url":112,"sources":113,"tags":114},"http://secunia.com/advisories/31062",[54,48],[58,68],{"url":116,"sources":117,"tags":118},"http://secunia.com/advisories/31256",[54,48],[58,68],{"url":120,"sources":121,"tags":122},"http://www.securityfocus.com/archive/1/493688/100/0/threaded",[54,48],[123,124,58,87],"Mailing List","X Refsource BUGTRAQ",{"url":126,"sources":127,"tags":128},"http://www.matasano.com/log/1070/updates-on-drew-yaos-terrible-ruby-vulnerabilities/",[54,48],[73,58],{"url":130,"sources":131,"tags":132},"http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.429562",[54,48],[56,133,123,58],"X Refsource SLACKWARE",{"url":135,"sources":136,"tags":137},"http://lists.apple.com/archives/security-announce/2008//Jun/msg00002.html",[54,48],[56,138,123,58],"X Refsource APPLE",{"url":140,"sources":141,"tags":142},"http://www.securitytracker.com/id?1020347",[54,48],[87,143,58],"X Refsource SECTRACK",{"url":145,"sources":146,"tags":147},"http://www.rubyinside.com/june-2008-ruby-security-vulnerabilities-927.html",[54,48],[73,58],{"url":149,"sources":150,"tags":151},"http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0206",[54,48],[63,152],"Broken Link",{"url":154,"sources":155,"tags":156},"https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00937.html",[54,48],[56,157,58],"X Refsource FEDORA",{"url":159,"sources":160,"tags":161},"http://www.mandriva.com/security/advisories?name=MDVSA-2008:140",[54,48],[56,78,58],{"url":163,"sources":164,"tags":165},"http://secunia.com/advisories/30802",[54,48],[58,68],{"url":167,"sources":168,"tags":169},"http://secunia.com/advisories/30831",[54,48],[58,68],{"url":171,"sources":172,"tags":173},"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9646",[54,48],[87,174,175,58],"Signature","X Refsource OVAL",{"url":177,"sources":178,"tags":179},"http://www.redhat.com/support/errata/RHSA-2008-0561.html",[54,48],[56,180,58],"X Refsource REDHAT",{"url":182,"sources":183,"tags":184},"https://issues.rpath.com/browse/RPL-2626",[54,48],[63,152],{"url":186,"sources":187,"tags":188},"http://www.debian.org/security/2008/dsa-1612",[54,48],[56,102,58],{"url":190,"sources":191,"tags":192},"http://security.gentoo.org/glsa/glsa-200812-17.xml",[54,48],[56,193,58],"X Refsource GENTOO",{"url":195,"sources":196,"tags":197},"http://secunia.com/advisories/33178",[54,48],[58,68],{"url":199,"sources":200,"tags":201},"http://www.securityfocus.com/bid/29903",[54,48],[87,202,58],"X Refsource BID",{"url":204,"sources":205,"tags":206},"http://www.zedshaw.com/rants/the_big_ruby_vulnerabilities.html",[54,48],[73,152],{"url":208,"sources":209,"tags":210},"http://secunia.com/advisories/30867",[54,48],[58,68],{"url":212,"sources":213,"tags":214},"http://www.mandriva.com/security/advisories?name=MDVSA-2008:142",[54,48],[56,78,58],{"url":216,"sources":217,"tags":218},"http://www.ruby-lang.org/en/news/2008/06/20/arbitrary-code-execution-vulnerabilities/",[54,48],[63,219,56],"Patch",{"url":221,"sources":222,"tags":223},"http://www.ruby-forum.com/topic/157034",[54,48],[73,58],{"url":225,"sources":226,"tags":227},"http://blog.phusion.nl/2008/06/23/ruby-186-p230187-broke-your-app-ruby-enterprise-edition-to-the-rescue/",[54,48],[73,58],{"url":229,"sources":230,"tags":231},"http://www.ubuntu.com/usn/usn-621-1",[54,48],[56,232,58],"X Refsource UBUNTU",{"url":234,"sources":235,"tags":236},"http://secunia.com/advisories/31181",[54,48],[58,68],[],{"date":239,"score":44,"percentile":240},"2026-06-04",0.90011,[242,246,249,252,255,258,261,264,266,268,271,274,276,279,282,285,288,291,294,297,300,302,305,308,311,313,316,320,324,327,329,332,335,338,341,343,346,349,352,355,358,361,363,366,368,371,374,376,378,381,384,387,390,392,396,399,402,404,407,410,413,416,419,422,424,427,430,433,436,439,441,444,447,449,452,454,457,459,462,464,467,470,473,476,479,482,484,487,490,493],{"date":243,"score":244,"percentile":245},"2025-11-04",0.04019,0.87958,{"date":247,"score":244,"percentile":248},"2025-11-05",0.8796,{"date":250,"score":244,"percentile":251},"2025-11-06",0.87946,{"date":253,"score":244,"percentile":254},"2025-11-07",0.87952,{"date":256,"score":244,"percentile":257},"2025-11-08",0.87955,{"date":259,"score":244,"percentile":260},"2025-11-09",0.8795,{"date":262,"score":244,"percentile":263},"2025-11-10",0.87949,{"date":265,"score":244,"percentile":257},"2025-11-11",{"date":267,"score":244,"percentile":248},"2025-11-12",{"date":269,"score":244,"percentile":270},"2025-11-13",0.87965,{"date":272,"score":244,"percentile":273},"2025-11-14",0.8797,{"date":275,"score":244,"percentile":270},"2025-11-15",{"date":277,"score":244,"percentile":278},"2025-11-16",0.87969,{"date":280,"score":244,"percentile":281},"2025-11-17",0.87966,{"date":283,"score":244,"percentile":284},"2025-11-18",0.8733,{"date":286,"score":244,"percentile":287},"2025-11-19",0.87333,{"date":289,"score":244,"percentile":290},"2025-11-20",0.87338,{"date":292,"score":244,"percentile":293},"2025-11-21",0.87981,{"date":295,"score":244,"percentile":296},"2025-11-22",0.87978,{"date":298,"score":244,"percentile":299},"2025-11-23",0.87974,{"date":301,"score":244,"percentile":299},"2025-11-24",{"date":303,"score":244,"percentile":304},"2025-11-25",0.87976,{"date":306,"score":244,"percentile":307},"2025-11-26",0.87975,{"date":309,"score":244,"percentile":310},"2025-11-27",0.87977,{"date":312,"score":244,"percentile":270},"2025-11-28",{"date":314,"score":244,"percentile":315},"2025-11-29",0.88041,{"date":317,"score":318,"percentile":319},"2025-11-30",0.06315,0.90584,{"date":321,"score":322,"percentile":323},"2025-12-01",0.06265,0.90603,{"date":325,"score":322,"percentile":326},"2025-12-02",0.90602,{"date":328,"score":322,"percentile":323},"2025-12-03",{"date":330,"score":322,"percentile":331},"2025-12-04",0.90542,{"date":333,"score":322,"percentile":334},"2025-12-05",0.90549,{"date":336,"score":322,"percentile":337},"2025-12-06",0.9055,{"date":339,"score":322,"percentile":340},"2025-12-07",0.90544,{"date":342,"score":322,"percentile":340},"2025-12-08",{"date":344,"score":322,"percentile":345},"2025-12-09",0.90548,{"date":347,"score":322,"percentile":348},"2025-12-10",0.90557,{"date":350,"score":322,"percentile":351},"2025-12-11",0.90562,{"date":353,"score":322,"percentile":354},"2025-12-12",0.90567,{"date":356,"score":322,"percentile":357},"2025-12-13",0.90559,{"date":359,"score":322,"percentile":360},"2025-12-14",0.90558,{"date":362,"score":322,"percentile":360},"2025-12-15",{"date":364,"score":322,"percentile":365},"2025-12-16",0.9056,{"date":367,"score":322,"percentile":354},"2025-12-17",{"date":369,"score":322,"percentile":370},"2025-12-18",0.90574,{"date":372,"score":322,"percentile":373},"2025-12-19",0.90573,{"date":375,"score":322,"percentile":373},"2025-12-20",{"date":377,"score":322,"percentile":319},"2025-12-21",{"date":379,"score":322,"percentile":380},"2025-12-22",0.90578,{"date":382,"score":322,"percentile":383},"2025-12-23",0.90587,{"date":385,"score":322,"percentile":386},"2025-12-24",0.90596,{"date":388,"score":322,"percentile":389},"2025-12-25",0.90599,{"date":391,"score":322,"percentile":386},"2025-12-26",{"date":393,"score":394,"percentile":395},"2025-12-27",0.06255,0.90641,{"date":397,"score":322,"percentile":398},"2025-12-28",0.90594,{"date":400,"score":322,"percentile":401},"2025-12-29",0.90591,{"date":403,"score":322,"percentile":386},"2025-12-30",{"date":405,"score":322,"percentile":406},"2025-12-31",0.90606,{"date":408,"score":322,"percentile":409},"2026-01-01",0.90678,{"date":411,"score":322,"percentile":412},"2026-01-02",0.90672,{"date":414,"score":322,"percentile":415},"2026-01-03",0.90671,{"date":417,"score":322,"percentile":418},"2026-01-04",0.90618,{"date":420,"score":322,"percentile":421},"2026-01-05",0.90615,{"date":423,"score":322,"percentile":418},"2026-01-06",{"date":425,"score":322,"percentile":426},"2026-01-07",0.90622,{"date":428,"score":322,"percentile":429},"2026-01-08",0.90623,{"date":431,"score":322,"percentile":432},"2026-01-09",0.90625,{"date":434,"score":322,"percentile":435},"2026-01-10",0.90627,{"date":437,"score":322,"percentile":438},"2026-01-11",0.90619,{"date":440,"score":322,"percentile":418},"2026-01-12",{"date":442,"score":322,"percentile":443},"2026-01-13",0.90616,{"date":445,"score":322,"percentile":446},"2026-01-14",0.9063,{"date":448,"score":322,"percentile":446},"2026-01-15",{"date":450,"score":322,"percentile":451},"2026-01-16",0.90634,{"date":453,"score":322,"percentile":451},"2026-01-17",{"date":455,"score":322,"percentile":456},"2026-01-18",0.90635,{"date":458,"score":322,"percentile":456},"2026-01-19",{"date":460,"score":322,"percentile":461},"2026-01-20",0.90637,{"date":463,"score":322,"percentile":395},"2026-01-21",{"date":465,"score":322,"percentile":466},"2026-01-22",0.90644,{"date":468,"score":322,"percentile":469},"2026-01-23",0.90652,{"date":471,"score":322,"percentile":472},"2026-01-24",0.9066,{"date":474,"score":322,"percentile":475},"2026-01-25",0.90661,{"date":477,"score":322,"percentile":478},"2026-01-26",0.90663,{"date":480,"score":322,"percentile":481},"2026-01-27",0.90666,{"date":483,"score":322,"percentile":415},"2026-01-28",{"date":485,"score":322,"percentile":486},"2026-01-29",0.9067,{"date":488,"score":322,"percentile":489},"2026-01-30",0.90669,{"date":491,"score":322,"percentile":492},"2026-01-31",0.90673,{"date":494,"score":322,"percentile":495},"2026-02-01",0.90731,[497],{"source":48,"cvss_v2_0":498,"cvss_v3_0":9,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":46,"baseSeverity":9,"vectorString":49,"impactScore":499,"exploitabilityScore":500},6.9,10,[502,517,524],{"ecosystem":9,"name":503,"vendor":504,"product":505,"cpe_part":506,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":507},"ubuntu linux","canonical","ubuntu_linux","o",[508,511,513,515],{"version":509,"is_range":42,"range_type":510,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"6.06","cpe",{"version":512,"is_range":42,"range_type":510,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.04",{"version":514,"is_range":42,"range_type":510,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.10",{"version":516,"is_range":42,"range_type":510,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.04",{"ecosystem":9,"name":518,"vendor":519,"product":520,"cpe_part":506,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":521},"debian linux","debian","debian_linux",[522],{"version":523,"is_range":42,"range_type":510,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"4.0",{"ecosystem":9,"name":525,"vendor":526,"product":525,"cpe_part":527,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":528},"ruby","ruby-lang","a",[529,534,539,543,547],{"version":530,"is_range":531,"range_type":510,"version_start":9,"version_start_type":9,"version_end":532,"version_end_type":533,"fixed_in":9},"lte1.8.4",true,"1.8.4","including",{"version":535,"is_range":531,"range_type":510,"version_start":536,"version_start_type":537,"version_end":538,"version_end_type":537,"fixed_in":9},"gt1.8.5_lt1.8.5.231","1.8.5","excluding","1.8.5.231",{"version":540,"is_range":531,"range_type":510,"version_start":541,"version_start_type":533,"version_end":542,"version_end_type":537,"fixed_in":9},"gte1.8.6_lt1.8.6.230","1.8.6","1.8.6.230",{"version":544,"is_range":531,"range_type":510,"version_start":545,"version_start_type":533,"version_end":546,"version_end_type":537,"fixed_in":9},"gte1.8.7_lt1.8.7.22","1.8.7","1.8.7.22",{"version":548,"is_range":531,"range_type":510,"version_start":549,"version_start_type":533,"version_end":550,"version_end_type":537,"fixed_in":9},"gte1.9.0_lt1.9.0.2","1.9.0","1.9.0.2"]