CVE-2022-31163HIGHCVSS 7.5fixed in ruby-tzinfo 2.0.4-2 (bookworm)2022
CVE-2022-31163 [HIGH] CVE-2022-31163: ruby-tzinfo - TZInfo is a Ruby library that provides access to time zone data and allows times...
TZInfo is a Ruby library that provides access to time zone data and allows times to be converted using time zone rules. Versions prior to 0.36.1, as well as those prior to 1.2.10 when used with the Ruby data source tzinfo-data, are vulnerable to relative path traversal. With the Ruby data source, time zones are defined in Ruby files. There is one file per time z
debian