FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

ruby -- multiple integer and buffer overflow vulnerabilities

Affected packages
1.8.*,1	<=	ruby	<	1.8.6.111_3,1
1.8.*,1	<=	ruby+oniguruma	<	1.8.6.111_3,1
1.8.*,1	<=	ruby+pthreads	<	1.8.6.111_3,1
1.8.*,1	<=	ruby+pthreads+oniguruma	<	1.8.6.111_3,1
1.8.*,1	<=	ruby_static

Details

VuXML ID	53802164-3f7e-11dd-90ea-0019666436c2
Discovery	2008-06-19
Entry	2008-06-21

The official ruby site reports:

Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.

[source]

References

CVE Name	CVE-2008-2726
URL	http://www.ruby-lang.org/en/news/2008/06/20/arbitrary-code-execution-vulnerabilities/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.