NetBSD 9.4

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2025-55193 Upstream summary: pkgsrc audit-packages flagged ruby{31,32,33,34}-rails72<7.2.2.2 for vulnerability class 'improper-output-neutralization'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-55193 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2025-55193 Upstream summary: pkgsrc audit-packages flagged ruby{31,32,33,34}-rails80<8.0.2.1 for vulnerability class 'improper-output-neutralization'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-55193 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Upstream summary: pkgsrc audit-packages flagged ruby{18,19,193}-rdoc<3.12.1 for vulnerability class 'cross-site-scripting'. Reference: http://www.ruby-lang.org/en/news/2013/02/06/rdoc-xss-cve-2013-0256/ Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis Solution – Primary […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2015-5147 Upstream summary: pkgsrc audit-packages flagged ruby{18,193,200,21,22}-redcarpat<3.3.2 for vulnerability class 'stack-overflow'. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5147 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2020-26298 Upstream summary: pkgsrc audit-packages flagged ruby{193,200,215}-redcarpet<3.2.3 for vulnerability class 'cross-site-scripting'. Reference: http://openwall.com/lists/oss-security/2015/04/07/11 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2012-6684 Upstream summary: pkgsrc audit-packages flagged ruby{18,193,200,215}-redcloth-[0-9]* for vulnerability class 'cross-site-scripting'. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-6684 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step Diagnosis […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2021-30164 CVE-2021-30163 CVE-2020-36307 CVE-2020-36306 CVE-2019-25026 CVE-2021-31863 CVE-2021-31864 CVE-2021-31865  +2 more Upstream summary: pkgsrc audit-packages flagged ruby{25,26,27,30}-redmine40<4.0.8 for vulnerability class 'security-bypass'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2021-30164 Table of contents Symptom & Impact Environment […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2021-29274 CVE-2021-30164 CVE-2021-30163 CVE-2020-36307 CVE-2020-36306 CVE-2021-31863 CVE-2021-31864 CVE-2021-31865  +3 more Upstream summary: pkgsrc audit-packages flagged ruby{25,26,27,30}-redmine41<4.1.2 for vulnerability class 'cross-site-scripting'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2021-29274 Table of contents Symptom & Impact Environment […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2021-28965 CVE-2025-58767 Upstream summary: pkgsrc audit-packages flagged ruby{25,26,27,30}-rexml<3.2.5 for vulnerability class 'input-validation'. Reference: https://nvd.nist.gov/vuln/detail/CVE-2021-28965 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: NetBSD 9.4 📖 ~4 min read  •  Source: pkgsrc audit-packages entry Related CVEs: CVE-2013-1855 CVE-2013-1857 Upstream summary: pkgsrc audit-packages flagged ruby{18,19,193}-ruby-actionpack<3.2.13 for vulnerability class 'cross-site-scripting'. Reference: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1855 Table of contents Symptom & Impact Environment & Reproduction Root Cause Analysis Quick Triage Step-by-Step […]