CVE-2026-54906 | ruby-concurrency concurrent-ruby up to 1.3.6 ReadWriteLock#release_write_lock lock check

Inserito da Angelo Barbosa | Giu 24, 2026 | CVE

A vulnerability was found in ruby-concurrency concurrent-ruby up to 1.3.6. It has been rated as problematic. This issue affects the function Concurrent::ReadWriteLock#release_write_lock. The manipulation leads to missing lock check.

This vulnerability is traded as CVE-2026-54906. An attack has to be approached locally. There is no exploit available.

Upgrading the affected component is advised.

CVE-2026-54906 | ruby-concurrency concurrent-ruby up to 1.3.6 ReadWriteLock#release_write_lock lock check

Post correlati

CVE-2024-47081 | psf requests URL src/requests/utils.py information disclosure

CVE-2024-53833 | Google Android lwis_transaction.c prepare_response_locked out-of-bounds write

CVE-2024-40634 | argoproj argo-cd up to 2.9.19/2.10.14/2.11.5 /api/webhook resource consumption (GHSA-jmvp-698c-4x3w)

CVE-2026-22700 | RustCrypto elliptic-curves 0.14.0-pre.0/0.14.0-rc.0 decrypt denial of service (GHSA-j9xq-69pf-pcm8)