Overview · ruby/net-imap · GitHub

Security

No security policy detected

This project has not set up a SECURITY.md file yet.

Report a vulnerability

Command Injection via "raw" arguments to multiple commands
GHSA-hm49-wcqc-g2xg published Apr 24, 2026 by nevans

Moderate
STARTTLS stripping via invalid response timing
GHSA-vcgp-9326-pqcp published Apr 24, 2026 by nevans

High
Quadratic complexity when reading response literals
GHSA-q2mw-fvj9-vvcw published Apr 24, 2026 by nevans

Low
Denial of service via high iteration count for `SCRAM-*` authentication
GHSA-87pf-fpwv-p7m7 published Apr 24, 2026 by nevans

Moderate
Command Injection via unvalidated Symbol inputs
GHSA-75xq-5h9v-w6px published Apr 24, 2026 by nevans

Moderate
Possible DoS by memory exhaustion in net/imap
GHSA-j3g3-5qv5-52mj published Apr 26, 2025 by nevans

Moderate
Possible DoS by memory exhaustion in net/imap
GHSA-7fc5-f82f-cx69 published Feb 8, 2025 by nevans

Moderate

Learn more about advisories related to ruby/net-imap in the GitHub Advisory Database