AZL-79437

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-79437.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-79437

Upstream

CVE-2026-3381

Published

2026-03-05T02:16:52Z

Modified

2026-04-21T04:34:43.890504Z

Summary

CVE-2026-3381 affecting package rubygem-mini_portile2 2.8.0-1

Details

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib.

Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for CVE-2026-27171.

References

https://nvd.nist.gov/vuln/detail/CVE-2026-3381

Affected packages

Azure Linux:2 / rubygem-mini_portile2

Package

Name: rubygem-mini_portile2
Purl: pkg:rpm/azure-linux/rubygem-mini_portile2

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

2.8.0-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-79437.json"