chris

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2021-22880 Upstream summary: pkgsrc audit-packages flagged ruby{25,26,27}-activerecord52<5.2.4.5 for vulnerability class 'cross-site-request-forgery'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2021-22880 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2021-22880 CVE-2022-32224 CVE-2023-22794 Upstream summary: pkgsrc audit-packages flagged ruby{25,26,27}-activerecord60<6.0.3.5 for vulnerability class 'cross-site-request-forgery'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2021-22880 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2022-32224 CVE-2023-22794 CVE-2022-44566 Upstream summary: pkgsrc audit-packages flagged ruby{26,27,30,31}-activerecord61<6.1.6.1 for vulnerability class 'sql-injection'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2022-32224 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage […]