What Are You Looking For?

Sign Up

Package        : ruby-zip
Version        : 1.1.6-1+deb8u2
CVE ID         : CVE-2018-1000544
Debian Bug     : 902720

It was found that rubyzip, a Ruby module for reading and writing zip
files, contained a Directory Traversal vulnerability that can be
exploited to write arbitrary files to the filesystem.

For Debian 8 "Jessie", this problem has been fixed in version
1.1.6-1+deb8u2.

We recommend that you upgrade your ruby-zip packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Debian LTS: DLA-1467-1: ruby-zip security update

August 15, 2018
It was found that rubyzip, a Ruby module for reading and writing zip files, contained a Directory Traversal vulnerability that can be exploited to write arbitrary files to the file...

Summary

We recommend that you upgrade your ruby-zip packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
Package : ruby-zip
Version : 1.1.6-1+deb8u2
CVE ID : CVE-2018-1000544
Debian Bug : 902720

Related News

Severe Chromium Bug Threatens Sensitive Data, System Availability

Nov 13, 2023

Widespread Xorg DoS, Privilege Escalation Vulns Fixed

Nov 13, 2023

Severe Firefox, Thunderbird Bugs Could Lead to System Takeover

Nov 8, 2023

Severe Chromium DoS, Info Disclosure Vulns Fixed

Oct 25, 2023

News

Advisories

HOWTOs

Features

Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap

About Us

Powered By

Footer Logo