[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2018-1000075":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":19,"aliases":20,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":68,"related":69,"reserved_at":9,"published_at":75,"modified_at":76,"state":77,"summary":78,"references_raw":87,"kevs":190,"epss":191,"epss_history":194,"metrics":454,"affected":466},"CVE-2018-1000075","RubyGems version Ruby 2.2 series: 2.2.9 and earlier, Ruby 2.3 series: 2.3.6 and earlier, Ruby 2.4 series: 2.4.3 and earlier, Ruby 2.5 series: 2.5.0 and earlier, prior to trunk revision 62422 contains a infinite loop caused by negative size vulnerability in ruby gem package tar header that can result in a negative size could cause an infinite loop.. This vulnerability appears to have been fixed in 2.7.6.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":9,"capec":18},"CWE-835","Loop with Unreachable Exit Condition ('Infinite Loop')","The product contains an iteration or loop with an exit condition that cannot be reached, i.e., an infinite loop.","weakness","Incomplete","Base",[],[],[21],"GHSA-74pv-v9gh-h25p",[],[24,26,28,30,32,34,36,38,40,42,44,46,48,50,52,54,56,58,60,62,64,66],{"_key":25},"SUSE-SU-2019:1804-1",{"_key":27},"SUSE-SU-2020:1570-1",{"_key":29},"OPENSUSE-SU-2019:1771-1",{"_key":31},"DLA-1336-1",{"_key":33},"DLA-1337-1",{"_key":35},"DLA-1358-1",{"_key":37},"DLA-1421-1",{"_key":39},"DLA-1796-1",{"_key":41},"DSA-4219-1",{"_key":43},"DSA-4259-1",{"_key":45},"MGASA-2020-0243",{"_key":47},"MGASA-2019-0062",{"_key":49},"RHSA-2018:3729",{"_key":51},"RHSA-2018:3730",{"_key":53},"RHSA-2018:3731",{"_key":55},"RHSA-2019:2028",{"_key":57},"RHSA-2020:0542",{"_key":59},"RHSA-2020:0591",{"_key":61},"RHSA-2020:0663",{"_key":63},"UBUNTU-CVE-2018-1000075",{"_key":65},"USN-3621-1",{"_key":67},"DEBIAN-CVE-2018-1000075",[],[70,71,72,73,74],{"_key":25},{"_key":27},{"_key":29},{"_key":47},{"_key":45},"2018-03-13T15:00:00.000Z","2024-08-05T12:33:49.137Z","Modified",{"cisa_kev":79,"cisa_ransomware":79,"cisa_vendor":9,"epss_severity":80,"epss_score":81,"severity":82,"severity_score":83,"severity_version":84,"severity_source":85,"severity_vector":86,"severity_status":77},false,"low",0.0176,"high",7.5,"v3.0","nvd","CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",[88,97,102,107,114,118,124,128,132,136,140,144,148,152,157,161,165,169,173,178,182,186],{"url":89,"sources":90,"tags":93},"https://www.debian.org/security/2018/dsa-4219",[91,85,92],"cve.org","osv_maven",[94,95,96],"Vendor Advisory","X Refsource DEBIAN","WEB",{"url":98,"sources":99,"tags":100},"https://usn.ubuntu.com/3621-1/",[91,85],[94,101],"X Refsource UBUNTU",{"url":103,"sources":104,"tags":105},"https://access.redhat.com/errata/RHSA-2018:3729",[91,85,92],[94,106,96],"X Refsource REDHAT",{"url":108,"sources":109,"tags":110},"https://github.com/rubygems/rubygems/commit/92e98bf8f810bd812f919120d4832df51bc25d83",[91,85,92],[111,112,113,96],"X Refsource MISC","Patch","Third Party Advisory",{"url":115,"sources":116,"tags":117},"https://access.redhat.com/errata/RHSA-2018:3730",[91,85,92],[94,106,96],{"url":119,"sources":120,"tags":121},"https://lists.debian.org/debian-lts-announce/2018/04/msg00023.html",[91,85,92],[122,123,96],"Mailing List","X Refsource MLIST",{"url":125,"sources":126,"tags":127},"https://access.redhat.com/errata/RHSA-2018:3731",[91,85,92],[94,106,96],{"url":129,"sources":130,"tags":131},"https://lists.debian.org/debian-lts-announce/2018/04/msg00001.html",[91,85,92],[122,123,113,96],{"url":133,"sources":134,"tags":135},"https://lists.debian.org/debian-lts-announce/2018/07/msg00012.html",[91,85,92],[122,123,96],{"url":137,"sources":138,"tags":139},"https://www.debian.org/security/2018/dsa-4259",[91,85,92],[94,95,96],{"url":141,"sources":142,"tags":143},"http://blog.rubygems.org/2018/02/15/2.7.6-released.html",[91,85,92],[111,94,96],{"url":145,"sources":146,"tags":147},"https://lists.debian.org/debian-lts-announce/2018/04/msg00000.html",[91,85,92],[122,123,113,96],{"url":149,"sources":150,"tags":151},"https://lists.debian.org/debian-lts-announce/2019/05/msg00028.html",[91,85,92],[122,123,96],{"url":153,"sources":154,"tags":155},"http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00036.html",[91,85,92],[94,156,96],"X Refsource SUSE",{"url":158,"sources":159,"tags":160},"https://access.redhat.com/errata/RHSA-2019:2028",[91,85,92],[94,106,96],{"url":162,"sources":163,"tags":164},"https://access.redhat.com/errata/RHSA-2020:0542",[91,85,92],[94,106,96],{"url":166,"sources":167,"tags":168},"https://access.redhat.com/errata/RHSA-2020:0591",[91,85,92],[94,106,96],{"url":170,"sources":171,"tags":172},"https://access.redhat.com/errata/RHSA-2020:0663",[91,85,92],[94,106,96],{"url":174,"sources":175,"tags":176},"https://nvd.nist.gov/vuln/detail/CVE-2018-1000075",[92],[177],"Advisory",{"url":179,"sources":180,"tags":181},"https://github.com/jruby/jruby/commit/0b06b48ab4432237ce5fc1bef47f2c6bcf7843f7",[92],[96],{"url":183,"sources":184,"tags":185},"https://github.com/rubygems/rubygems/commit/5971b486d4dbb2bad5d3445b3801c456eb0ce183",[92],[96],{"url":187,"sources":188,"tags":189},"https://usn.ubuntu.com/3621-1",[92],[96],[],{"date":192,"score":81,"percentile":193},"2026-06-04",0.82949,[195,199,201,203,206,209,212,215,218,221,224,227,230,232,235,239,242,245,248,251,254,256,259,262,265,268,271,273,276,279,282,285,288,291,293,296,299,302,305,308,310,313,316,319,322,325,328,331,334,337,340,343,346,348,351,354,357,360,363,366,369,372,375,378,381,383,386,389,392,395,398,401,404,407,410,413,416,419,421,423,426,429,432,435,438,441,444,446,449,451],{"date":196,"score":197,"percentile":198},"2025-11-04",0.01632,0.81277,{"date":200,"score":197,"percentile":198},"2025-11-05",{"date":202,"score":197,"percentile":198},"2025-11-06",{"date":204,"score":197,"percentile":205},"2025-11-07",0.81288,{"date":207,"score":197,"percentile":208},"2025-11-08",0.81295,{"date":210,"score":197,"percentile":211},"2025-11-09",0.81292,{"date":213,"score":197,"percentile":214},"2025-11-10",0.81286,{"date":216,"score":197,"percentile":217},"2025-11-11",0.81293,{"date":219,"score":197,"percentile":220},"2025-11-12",0.81305,{"date":222,"score":197,"percentile":223},"2025-11-13",0.81312,{"date":225,"score":197,"percentile":226},"2025-11-14",0.81318,{"date":228,"score":197,"percentile":229},"2025-11-15",0.81315,{"date":231,"score":197,"percentile":229},"2025-11-16",{"date":233,"score":197,"percentile":234},"2025-11-17",0.81314,{"date":236,"score":237,"percentile":238},"2025-11-18",0.04869,0.88489,{"date":240,"score":237,"percentile":241},"2025-11-19",0.88493,{"date":243,"score":237,"percentile":244},"2025-11-20",0.88497,{"date":246,"score":197,"percentile":247},"2025-11-21",0.81329,{"date":249,"score":197,"percentile":250},"2025-11-22",0.81335,{"date":252,"score":197,"percentile":253},"2025-11-23",0.81326,{"date":255,"score":197,"percentile":253},"2025-11-24",{"date":257,"score":197,"percentile":258},"2025-11-25",0.81328,{"date":260,"score":197,"percentile":261},"2025-11-26",0.8133,{"date":263,"score":197,"percentile":264},"2025-11-27",0.81336,{"date":266,"score":197,"percentile":267},"2025-11-28",0.81327,{"date":269,"score":197,"percentile":270},"2025-11-29",0.81332,{"date":272,"score":197,"percentile":264},"2025-11-30",{"date":274,"score":197,"percentile":275},"2025-12-01",0.81417,{"date":277,"score":197,"percentile":278},"2025-12-02",0.81419,{"date":280,"score":197,"percentile":281},"2025-12-03",0.81418,{"date":283,"score":197,"percentile":284},"2025-12-04",0.81337,{"date":286,"score":197,"percentile":287},"2025-12-05",0.81346,{"date":289,"score":197,"percentile":290},"2025-12-06",0.81347,{"date":292,"score":197,"percentile":290},"2025-12-07",{"date":294,"score":197,"percentile":295},"2025-12-08",0.81348,{"date":297,"score":197,"percentile":298},"2025-12-09",0.81366,{"date":300,"score":197,"percentile":301},"2025-12-10",0.81391,{"date":303,"score":197,"percentile":304},"2025-12-11",0.81402,{"date":306,"score":197,"percentile":307},"2025-12-12",0.81412,{"date":309,"score":197,"percentile":307},"2025-12-13",{"date":311,"score":197,"percentile":312},"2025-12-14",0.81408,{"date":314,"score":197,"percentile":315},"2025-12-15",0.81404,{"date":317,"score":197,"percentile":318},"2025-12-16",0.81414,{"date":320,"score":197,"percentile":321},"2025-12-17",0.8142,{"date":323,"score":197,"percentile":324},"2025-12-18",0.81434,{"date":326,"score":197,"percentile":327},"2025-12-19",0.8144,{"date":329,"score":197,"percentile":330},"2025-12-20",0.81435,{"date":332,"score":197,"percentile":333},"2025-12-21",0.81431,{"date":335,"score":197,"percentile":336},"2025-12-22",0.81429,{"date":338,"score":197,"percentile":339},"2025-12-23",0.81432,{"date":341,"score":197,"percentile":342},"2025-12-24",0.81445,{"date":344,"score":197,"percentile":345},"2025-12-25",0.81462,{"date":347,"score":197,"percentile":345},"2025-12-26",{"date":349,"score":197,"percentile":350},"2025-12-27",0.81495,{"date":352,"score":197,"percentile":353},"2025-12-28",0.81449,{"date":355,"score":197,"percentile":356},"2025-12-29",0.81446,{"date":358,"score":197,"percentile":359},"2025-12-30",0.81453,{"date":361,"score":197,"percentile":362},"2025-12-31",0.81466,{"date":364,"score":197,"percentile":365},"2026-01-01",0.8154,{"date":367,"score":197,"percentile":368},"2026-01-02",0.81535,{"date":370,"score":197,"percentile":371},"2026-01-03",0.81528,{"date":373,"score":197,"percentile":374},"2026-01-04",0.81444,{"date":376,"score":197,"percentile":377},"2026-01-05",0.81439,{"date":379,"score":197,"percentile":380},"2026-01-06",0.81443,{"date":382,"score":197,"percentile":356},"2026-01-07",{"date":384,"score":197,"percentile":385},"2026-01-08",0.81454,{"date":387,"score":81,"percentile":388},"2026-01-09",0.82145,{"date":390,"score":81,"percentile":391},"2026-01-10",0.82146,{"date":393,"score":81,"percentile":394},"2026-01-11",0.82143,{"date":396,"score":81,"percentile":397},"2026-01-12",0.82135,{"date":399,"score":81,"percentile":400},"2026-01-13",0.82133,{"date":402,"score":81,"percentile":403},"2026-01-14",0.82154,{"date":405,"score":81,"percentile":406},"2026-01-15",0.82152,{"date":408,"score":81,"percentile":409},"2026-01-16",0.82162,{"date":411,"score":81,"percentile":412},"2026-01-17",0.82163,{"date":414,"score":81,"percentile":415},"2026-01-18",0.82161,{"date":417,"score":81,"percentile":418},"2026-01-19",0.82156,{"date":420,"score":81,"percentile":418},"2026-01-20",{"date":422,"score":81,"percentile":412},"2026-01-21",{"date":424,"score":81,"percentile":425},"2026-01-22",0.82171,{"date":427,"score":81,"percentile":428},"2026-01-23",0.82195,{"date":430,"score":81,"percentile":431},"2026-01-24",0.82201,{"date":433,"score":81,"percentile":434},"2026-01-25",0.82192,{"date":436,"score":81,"percentile":437},"2026-01-26",0.8219,{"date":439,"score":81,"percentile":440},"2026-01-27",0.82188,{"date":442,"score":81,"percentile":443},"2026-01-28",0.82189,{"date":445,"score":81,"percentile":437},"2026-01-29",{"date":447,"score":81,"percentile":448},"2026-01-30",0.82196,{"date":450,"score":81,"percentile":431},"2026-01-31",{"date":452,"score":81,"percentile":453},"2026-02-01",0.82278,[455,464],{"source":85,"cvss_v2_0":456,"cvss_v3_0":461,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":457,"baseSeverity":9,"vectorString":458,"impactScore":459,"exploitabilityScore":460},5,"AV:N/AC:L/Au:N/C:N/I:N/A:P",2.9,10,{"baseScore":83,"baseSeverity":462,"vectorString":86,"impactScore":463,"exploitabilityScore":460},"HIGH",6,{"source":92,"cvss_v2_0":9,"cvss_v3_0":465,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":83,"baseSeverity":9,"vectorString":86,"impactScore":463,"exploitabilityScore":460},[467,476,487,497],{"ecosystem":9,"name":468,"vendor":469,"product":470,"cpe_part":471,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":472},"debian linux","debian","debian_linux","o",[473],{"version":474,"is_range":79,"range_type":475,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"7.0","cpe",{"ecosystem":477,"name":478,"vendor":477,"product":478,"cpe_part":9,"purl_type":479,"purl_namespace":9,"purl_name":478,"source":9,"versions":480},"RubyGems","rubygems-update","gem",[481],{"version":482,"is_range":483,"range_type":484,"version_start":9,"version_start_type":9,"version_end":485,"version_end_type":486,"fixed_in":9},"lt2_7_6",true,"ecosystem","2.7.6","excluding",{"ecosystem":488,"name":489,"vendor":490,"product":491,"cpe_part":9,"purl_type":492,"purl_namespace":490,"purl_name":491,"source":9,"versions":493},"Maven","org.jruby:jruby-stdlib","org.jruby","jruby-stdlib","maven",[494],{"version":495,"is_range":483,"range_type":484,"version_start":9,"version_start_type":9,"version_end":496,"version_end_type":486,"fixed_in":9},"lt9_1_16_0","9.1.16.0",{"ecosystem":9,"name":498,"vendor":498,"product":498,"cpe_part":499,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":500},"rubygems","a",[501,505,508,511],{"version":502,"is_range":483,"range_type":475,"version_start":9,"version_start_type":9,"version_end":503,"version_end_type":504,"fixed_in":9},"lte2.2.9","2.2.9","including",{"version":506,"is_range":483,"range_type":475,"version_start":9,"version_start_type":9,"version_end":507,"version_end_type":504,"fixed_in":9},"lte2.3.6","2.3.6",{"version":509,"is_range":483,"range_type":475,"version_start":9,"version_start_type":9,"version_end":510,"version_end_type":504,"fixed_in":9},"lte2.4.3","2.4.3",{"version":512,"is_range":483,"range_type":475,"version_start":9,"version_start_type":9,"version_end":513,"version_end_type":504,"fixed_in":9},"lte2.5.0","2.5.0"]