CVE-2017-0900

RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications to cause a denial of service attack against RubyGems clients who have issued a `query` command.

Date published : 2017-08-31

http://www.securityfocus.com/bid/100579

https://www.debian.org/security/2017/dsa-3966