Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 525
Alerts This Week
Warning Icon 1 525

Gentoo: 200612-21 Normal: Ruby cgi.rb Denial of Service Alert

gentoo
Calendar Grey December 20, 2006
Dist Gentoo Esm H88
Gentoo GLSA-202309-15 uncovers critical vulnerability in PHP intl extension necessitating prompt remediation.
The Ruby cgi.rb CGI library is vulnerable to a Denial of Service attack.

Summary

Gentoo Linux Security Advisory GLSA 200612-21 https://security.gentoo.org/ Severity: Normal Title: Ruby: Denial of Service vulnerability Date: December 20, 2006 Bugs: #157048 ID: 200612-21

Synopsis ======= The Ruby cgi.rb CGI library is vulnerable to a Denial of Service attack.
Background ========= Ruby is a dynamic, open source programming language with a focus on simplicity and productivity.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-lang/ruby < 1.8.5_p2 >= 1.8.5_p2
========== The read_multipart function of the CGI library shipped with Ruby (cgi.rb) does not properly check boundaries in MIME multipart content. This is a different issue than GLSA...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround