Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Gentoo: 200906-02 Normal: Denial Of Service Risk In Ruby

gentoo
Calendar Grey June 28, 2009
Dist Gentoo Esm H88
Gentoo users should be alert to a critical Ruby vulnerability that may cause Denial of Service attacks, impacting applications and services
A flaw in the Ruby standard library might allow remote attackers to cause a Denial of Service attack.

Summary

Gentoo Linux Security Advisory GLSA 200906-02 https://security.gentoo.org/ Severity: Normal Title: Ruby: Denial of Service Date: June 28, 2009 Bugs: #273213 ID: 200906-02

Synopsis ======= A flaw in the Ruby standard library might allow remote attackers to cause a Denial of Service attack.
Background ========= Ruby is an interpreted object-oriented programming language. The elaborate standard library includes the "BigDecimal" class.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 dev-lang/ruby < 1.8.6_p369 >= 1.8.6_p369
========== Tadayoshi Funaba reported that BigDecimal in ext/bigdecimal/bigdecimal.c does not properly handle string arguments containing overly...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory denial of service gentoo ruby normal severity

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Topics%20covered

Topics Covered

security advisory denial of service gentoo ruby normal severity

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround

Your message here