Description
RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications to cause a denial of service attack against RubyGems clients who have issued a `query` command.
Remediation
References
Related Vulnerabilities
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1474)
WordPress Plugin Download Manager Multiple Cross-Site Scripting Vulnerabilities (3.2.48)
Apache Tomcat version older than 6.0.10
Jboss EAP CVE-2016-6796 Vulnerability (CVE-2016-6796)
ownCloud Improper Access Control Vulnerability (CVE-2016-9468)