Описание
Type confusion exists in _cancel_eval Ruby's TclTkIp class method. Attacker passing different type of object than String as "retval" argument can cause arbitrary code execution.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| ruby2.3 | fixed | 2.3.0-1 | package | |
| ruby2.1 | removed | package |
Примечания
http://www.talosintelligence.com/reports/TALOS-2016-0031/
https://github.com/ruby/ruby/commit/a2b8925a94a672235ca6a16e584bf09026a957ab
Связанные уязвимости
Type confusion exists in _cancel_eval Ruby's TclTkIp class method. Attacker passing different type of object than String as "retval" argument can cause arbitrary code execution.
Type confusion exists in _cancel_eval Ruby's TclTkIp class method. Attacker passing different type of object than String as "retval" argument can cause arbitrary code execution.
Type confusion exists in _cancel_eval Ruby's TclTkIp class method. Attacker passing different type of object than String as "retval" argument can cause arbitrary code execution.
Type confusion exists in _cancel_eval Ruby's TclTkIp class method. Attacker passing different type of object than String as "retval" argument can cause arbitrary code execution.
Уязвимость метода _cancel_eval класса TclTkIp интерпретатора Ruby, позволяющая нарушителю выполнить произвольный код