In the Ox gem 2.8.0 for Ruby, the process crashes with a segmentation fault when a crafted input is supplied to parse_obj. NOTE: the vendor has stated "Ox should handle the error more gracefully" but has not confirmed a security implication.
{ "cpe": "cpe:2.3:a:ox_project:ox:2.8.0:*:*:*:*:ruby:*:*", "extracted_events": [ { "introduced": "2.8.0" }, { "last_affected": "2.8.0" } ], "source": "CPE_STRING" }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-15928.json"