Description
A double free was found in the Regexp compiler in Ruby 3.x before 3.0.4 and 3.1.x before 3.1.2. If a victim attempts to create a Regexp from untrusted user input, an attacker may be able to write to unexpected memory locations.
Remediation
References
Related Vulnerabilities
MySQL CVE-2019-2784 Vulnerability (CVE-2019-2784)
Oracle Application Server Other Vulnerability (CVE-2006-5358)
WordPress Plugin Click to Call or Chat Buttons Cross-Site Scripting (1.4.0)
Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-28169)
WordPress Plugin Migration, Backup, Staging-WPvivid Security Bypass (0.9.35)