CVE Catalog

CVE-2026-46727

High
Published: Translated: NVD NIST

Summary

An issue was discovered in Ruby 4 before 4.0.5 related to a race condition leading to a use-after-free in the getaddrinfo timeout handler. A remote attacker can crash a Ruby process by delaying DNS responses near the user-specified timeout.

Risk Assessment

An attacker could exploit this vulnerability to crash Ruby processes, potentially causing application downtime. Memory-corruption-based exploitation is theoretically possible.

Recommendation

It is recommended to update Ruby to version 4.0.5 or later to mitigate this vulnerability. Additionally, monitoring and securing DNS servers against potential attacks is advisable.

Original NVD description (English source)

An issue was discovered in Ruby 4 before 4.0.5. A race condition leading to a use-after-free in the pthread-based getaddrinfo timeout handler (rb_getaddrinfo in ext/socket/raddrinfo.c) allows a remote attacker who can delay DNS responses near the user-specified timeout to crash a Ruby process that calls Addrinfo.getaddrinfo(..., timeout:) or Socket.tcp(..., resolv_timeout:). Memory-corruption-based exploitation is theoretically possible. The attack could, for example, be carried out through a crafted authoritative DNS server or recursive resolver.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS