CVE-2018-8777

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2018-8777
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-8777.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2018-8777
Downstream
Related
Published
2018-04-03T22:29:00.710Z
Modified
2026-02-16T10:15:06.295139Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

In Ruby before 2.2.10, 2.3.x before 2.3.7, 2.4.x before 2.4.4, 2.5.x before 2.5.1, and 2.6.0-preview1, an attacker can pass a large HTTP request with a crafted header to WEBrick server or a crafted body to WEBrick server/handler and cause a denial of service (memory consumption).

References

Affected packages

Git / github.com/opencv/opencv

Affected ranges

Type
GIT
Repo
https://github.com/opencv/opencv
Events
Introduced
ea3fe441df5e874b229f7fafa2bc8042f97b97dc
Fixed
facab40745af0abfd7e7f9ee08f2ab0ab9c7c741

Affected versions

2.*
2.4.0
2.4.1
2.4.2
2.4.3
2.4.3-rc
2.4.3.1
2.4.3.2
2.4.4-beta

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-8777.json"

Git / github.com/ruby/ruby

Affected ranges

Type
GIT
Repo
https://github.com/ruby/ruby
Events
Introduced
4e0a512972cdcbfcd5279f1a2a81ba342ed75b6e
Fixed
85883dc393f60adc3043d28899eff3f1ce53b4a5
Introduced
7393bf6a5cfff63683f36535e293caaa0d4c5be0
Fixed
933bb2b8b57c48dc664fce6d752670e6521a4141
Introduced
d40ea2afa6ff5a6e5befcf342fb7b6dc58796b20
Fixed
9bfe7fc5cb457c7bc8df96115ee70b9035f5d885
Introduced
d4bb726b713658f56e630b6cf817a0155b6f390e
Fixed
a8197e08f58c5f2e6d32a774866e0e0d58749911

Database specific

source 
"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-8777.json"