CGI.escapehtml in Ruby before 2.7.5 and 3.x before 3.0.3 has an integer overflow and resultant buffer overflow via a long string on platforms (such as Windows) where sizet and long have different numbers of bytes. This also affects the CGI gem before 0.3.1 for Ruby.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "2.7.0-5ubuntu1.6", "binary_name": "libruby2.7" }, { "binary_version": "2.7.0-5ubuntu1.6", "binary_name": "libruby2.7-dbgsym" }, { "binary_version": "2.7.0-5ubuntu1.6", "binary_name": "ruby2.7" }, { "binary_version": "2.7.0-5ubuntu1.6", "binary_name": "ruby2.7-dbgsym" }, { "binary_version": "2.7.0-5ubuntu1.6", "binary_name": "ruby2.7-dev" }, { "binary_version": "2.7.0-5ubuntu1.6", "binary_name": "ruby2.7-doc" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "3.0.2-7ubuntu2", "binary_name": "libruby3.0" }, { "binary_version": "3.0.2-7ubuntu2", "binary_name": "libruby3.0-dbgsym" }, { "binary_version": "3.0.2-7ubuntu2", "binary_name": "ruby3.0" }, { "binary_version": "3.0.2-7ubuntu2", "binary_name": "ruby3.0-dbgsym" }, { "binary_version": "3.0.2-7ubuntu2", "binary_name": "ruby3.0-dev" }, { "binary_version": "3.0.2-7ubuntu2", "binary_name": "ruby3.0-doc" } ] }