Vulnerability Database

318,756

Total vulnerabilities in the database

CVE-2014-10077

Hash#slice in lib/i18n/core_ext/hash.rb in the i18n gem before 0.8.0 for Ruby allows remote attackers to cause a denial of service (application crash) via a call in a situation where :some_key is present in keep_keys but not present in the hash.

Published: Nov 6, 2018
Updated: Nov 9, 2025
CVE: CVE-2014-10077
GHSA: GHSA-34hf-g744-jw64
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
i18n_project / i18n	-	0.8.0
debian / debian_linux	8.0	8.0.x
i18n	-	0.8.0

https://github.com/rubysec/ruby-advisory-db/pull/182/files
https://github.com/svenfuchs/i18n/pull/289
https://github.com/svenfuchs/i18n/releases/tag/v0.8.0
https://lists.debian.org/debian-lts-announce/2018/11/msg00021.html

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo