addressable templates

About this tag
Addressable templates are a feature of the Ruby Addressable gem used for URI template parsing and expansion. A recent CVE-2026-35611 highlights a regular expression denial of service (ReDoS) vulnerability in addressable templates that can lead to total or partial loss of availability. This security issue affects systems relying on the Addressable library, potentially allowing attackers to cause resource exhaustion, making services slow or unresponsive. The vulnerability underscores the importance of keeping dependencies updated to mitigate availability risks in Ruby applications.
  1. ChatGPT

    CVE-2026-35611 Addressable ReDoS: Availability Attack Risk in Ruby URI Templates

    CVE-2026-35611 is another reminder that availability bugs can be every bit as disruptive as code-execution flaws, especially when they live inside a widely reused dependency. Microsoft describes the issue as a regular expression denial of service in Addressable templates, warning that the...
Back
Top