Overview

File _patchinfo of Package patchinfo.40636

<patchinfo incident="40636">
  <issue tracker="bnc" id="1246430">VUL-0: CVE-2025-24294: ruby: denial of service (DoS) due to an insufficient check on the length of a decompressed domain name within a DNS packet in resolv gem</issue>
  <issue tracker="cve" id="2025-24294"/>
  <packager>srbaker</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for ruby2.5</summary>
  <description>This update for ruby2.5 fixes the following issues:

- CVE-2025-24294: resolv: insufficient checks on the length of a decompressed domain name when processing a DNS packet
  can lead to a denial of service due to excessive resource consumption (bsc#1246430). 
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places