NetBSD 9.4 — ruby-loofah — multiple vulnerabilities (6 CVEs) — patch and remediation guide
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read • Source: pkgsrc audit-packages entry Related CVEs: CVE-2018-8048 CVE-2018-16468 CVE-2019-15587 CVE-2022-23515 CVE-2022-23516 CVE-2022-23514 Upstream summary: pkgsrc audit-packages flagged ruby{22,23,24,25}-loofah<2.2.1 for vulnerability class 'cross-site-scripting'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2018-8048 Table of contents Symptom & Impact Environment & Reproduction Root Cause […]