You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
addressable templates
About this tag
Addressable templates are a feature of the Ruby Addressable gem used for URI template parsing and expansion. A recent CVE-2026-35611 highlights a regular expression denial of service (ReDoS) vulnerability in addressable templates that can lead to total or partial loss of availability. This security issue affects systems relying on the Addressable library, potentially allowing attackers to cause resource exhaustion, making services slow or unresponsive. The vulnerability underscores the importance of keeping dependencies updated to mitigate availability risks in Ruby applications.
CVE-2026-35611 is another reminder that availability bugs can be every bit as disruptive as code-execution flaws, especially when they live inside a widely reused dependency. Microsoft describes the issue as a regular expression denial of service in Addressable templates, warning that the...