Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Debian: DSA-4587-1 High: Ruby Interpreter Unauthorized Access Risks

debian
Calendar Grey December 17, 2019
Debian Logo
Several security flaws in the Ruby environment have been addressed to thwart unauthorized intrusions, denial-of-service attacks, or the execution of arbitrary code.
Several vulnerabilities have been discovered in the interpreter for the Ruby language, which could result in unauthorized access by bypassing intended path matchings, denial of ser...

Summary

For the oldstable distribution (stretch), these problems have been fixed
in version 2.3.3-1+deb9u7.

We recommend that you upgrade your ruby2.3 packages.

For the detailed security status of ruby2.3 please refer to its security
tracker page at:

Further information about Debian Security Advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://www.debian.org/security/



Severity
important
Lowest
Low
Medium
High
Critical

Package: ruby2.3
CVE ID: CVE-2019-15845 CVE-2019-16201 CVE-2019-16254 CVE-2019-16255

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here