Описание
Множественные уязвимости пакета libruby1.8 операционной системы Debian GNU/Linux, эксплуатация которых может привести к нарушению доступности защищаемой информации. Эксплуатация уязвимостей может быть осуществлена удаленно
Вендор
Сообщество свободного программного обеспечения
Наименование ПО
Debian GNU/Linux
Версия ПО
до 4 (Debian GNU/Linux)
Тип ПО
Операционная система
Операционные системы и аппаратные платформы
-
Уровень опасности уязвимости
Средний уровень опасности (базовая оценка CVSS 2.0 составляет 5)
Возможные меры по устранению уязвимости
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
Debian GNU/Linux 4:
ppc:
libreadline-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.9 - 1.9.0+20060609-1etch4
libtcltk-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.9-dev - 1.9.0+20060609-1etch4
ruby1.8 - 1.8.5-4etch4
libruby1.9-dbg - 1.9.0+20060609-1etch4
libreadline-ruby1.8 - 1.8.5-4etch4
libdbm-ruby1.9 - 1.9.0+20060609-1etch4
libopenssl-ruby1.8 - 1.8.5-4etch4
ruby1.9 - 1.9.0+20060609-1etch4
libgdbm-ruby1.9 - 1.9.0+20060609-1etch4
libopenssl-ruby1.9 - 1.9.0+20060609-1etch4
libdbm-ruby1.8 - 1.8.5-4etch4
libruby1.8-dbg - 1.8.5-4etch4
libgdbm-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
ruby1.8-dev - 1.8.5-4etch4
libruby1.8 - 1.8.5-4etch4
s390x:
libopenssl-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.9 - 1.9.0+20060609-1etch4
libgdbm-ruby1.9 - 1.9.0+20060609-1etch4
libreadline-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.8-dev - 1.8.5-4etch4
ruby1.9-dev - 1.9.0+20060609-1etch4
libtcltk-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.9 - 1.9.0+20060609-1etch4
libruby1.8-dbg - 1.8.5-4etch4
libopenssl-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
ruby1.8 - 1.8.5-4etch4
libreadline-ruby1.8 - 1.8.5-4etch4
libdbm-ruby1.8 - 1.8.5-4etch4
libgdbm-ruby1.8 - 1.8.5-4etch4
libdbm-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.9-dbg - 1.9.0+20060609-1etch4
libruby1.8 - 1.8.5-4etch4
i686:
libgdbm-ruby1.8 - 1.8.5-4etch4
libreadline-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.8 - 1.8.5-4etch4
libruby1.9 - 1.9.0+20060609-1etch4
ruby1.8 - 1.8.5-4etch4
libdbm-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.8-dbg - 1.8.5-4etch4
ruby1.8-dev - 1.8.5-4etch4
libdbm-ruby1.8 - 1.8.5-4etch4
libopenssl-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.9-dev - 1.9.0+20060609-1etch4
ruby1.9 - 1.9.0+20060609-1etch4
libruby1.9-dbg - 1.9.0+20060609-1etch4
libopenssl-ruby1.9 - 1.9.0+20060609-1etch4
libgdbm-ruby1.9 - 1.9.0+20060609-1etch4
libreadline-ruby1.8 - 1.8.5-4etch4
hppa:
libreadline-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.8-dev - 1.8.5-4etch4
libruby1.9-dbg - 1.9.0+20060609-1etch4
libreadline-ruby1.8 - 1.8.5-4etch4
libopenssl-ruby1.8 - 1.8.5-4etch4
libgdbm-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.9 - 1.9.0+20060609-1etch4
libgdbm-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.8-dbg - 1.8.5-4etch4
libruby1.9 - 1.9.0+20060609-1etch4
libdbm-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
ruby1.8 - 1.8.5-4etch4
ruby1.9-dev - 1.9.0+20060609-1etch4
libdbm-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.8 - 1.8.5-4etch4
libopenssl-ruby1.9 - 1.9.0+20060609-1etch4
sparc:
libdbm-ruby1.8 - 1.8.5-4etch4
libgdbm-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
libruby1.8-dbg - 1.8.5-4etch4
libreadline-ruby1.8 - 1.8.5-4etch4
libopenssl-ruby1.8 - 1.8.5-4etch4
ruby1.8-dev - 1.8.5-4etch4
libruby1.8 - 1.8.5-4etch4
ruby1.8 - 1.8.5-4etch4
x86-64:
ruby1.9-dev - 1.9.0+20060609-1etch4
libdbm-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.9 - 1.9.0+20060609-1etch4
libreadline-ruby1.8 - 1.8.5-4etch4
libruby1.8-dbg - 1.8.5-4etch4
libruby1.9 - 1.9.0+20060609-1etch4
ruby1.8-dev - 1.8.5-4etch4
libgdbm-ruby1.9 - 1.9.0+20060609-1etch4
libdbm-ruby1.8 - 1.8.5-4etch4
ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.9 - 1.9.0+20060609-1etch4
libopenssl-ruby1.8 - 1.8.5-4etch4
libgdbm-ruby1.8 - 1.8.5-4etch4
libreadline-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.8 - 1.8.5-4etch4
libopenssl-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.9-dbg - 1.9.0+20060609-1etch4
alpha:
libreadline-ruby1.8 - 1.8.5-4etch4
libopenssl-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.9 - 1.9.0+20060609-1etch4
libdbm-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.8 - 1.8.5-4etch4
libopenssl-ruby1.8 - 1.8.5-4etch4
libgdbm-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.8-dev - 1.8.5-4etch4
ruby1.9-dev - 1.9.0+20060609-1etch4
libreadline-ruby1.9 - 1.9.0+20060609-1etch4
libdbm-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.9 - 1.9.0+20060609-1etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
libgdbm-ruby1.8 - 1.8.5-4etch4
libruby1.8-dbg - 1.8.5-4etch4
libruby1.9 - 1.9.0+20060609-1etch4
libruby1.9-dbg - 1.9.0+20060609-1etch4
libruby1.8 - 1.8.5-4etch4
ia64:
libopenssl-ruby1.8 - 1.8.5-4etch4
libopenssl-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.9-dbg - 1.9.0+20060609-1etch4
libruby1.9 - 1.9.0+20060609-1etch4
ruby1.8-dev - 1.8.5-4etch4
libgdbm-ruby1.8 - 1.8.5-4etch4
libreadline-ruby1.9 - 1.9.0+20060609-1etch4
libtcltk-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.8 - 1.8.5-4etch4
ruby1.9-dev - 1.9.0+20060609-1etch4
ruby1.9 - 1.9.0+20060609-1etch4
libgdbm-ruby1.9 - 1.9.0+20060609-1etch4
libdbm-ruby1.8 - 1.8.5-4etch4
libruby1.8-dbg - 1.8.5-4etch4
libruby1.8 - 1.8.5-4etch4
libreadline-ruby1.8 - 1.8.5-4etch4
libdbm-ruby1.9 - 1.9.0+20060609-1etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
mips:
libgdbm-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.8-dbg - 1.8.5-4etch4
libtcltk-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.9 - 1.9.0+20060609-1etch4
libreadline-ruby1.8 - 1.8.5-4etch4
ruby1.9 - 1.9.0+20060609-1etch4
libopenssl-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.9-dev - 1.9.0+20060609-1etch4
libreadline-ruby1.9 - 1.9.0+20060609-1etch4
libgdbm-ruby1.8 - 1.8.5-4etch4
ruby1.8-dev - 1.8.5-4etch4
libdbm-ruby1.9 - 1.9.0+20060609-1etch4
libopenssl-ruby1.8 - 1.8.5-4etch4
ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
libdbm-ruby1.8 - 1.8.5-4etch4
libruby1.8 - 1.8.5-4etch4
libruby1.9-dbg - 1.9.0+20060609-1etch4
noarch:
ruby1.9-examples - 1.9.0+20060609-1etch4
irb1.9 - 1.9.0+20060609-1etch4
rdoc1.8 - 1.8.5-4etch4
ri1.8 - 1.8.5-4etch4
ruby1.9-elisp - 1.9.0+20060609-1etch4
ri1.9 - 1.9.0+20060609-1etch4
rdoc1.9 - 1.9.0+20060609-1etch4
irb1.8 - 1.8.5-4etch4
ruby1.8-elisp - 1.8.5-4etch4
ruby1.8-examples - 1.8.5-4etch4
mipsel:
ruby1.8 - 1.8.5-4etch4
libgdbm-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.8 - 1.8.5-4etch4
libruby1.9 - 1.9.0+20060609-1etch4
libopenssl-ruby1.9 - 1.9.0+20060609-1etch4
libopenssl-ruby1.8 - 1.8.5-4etch4
libruby1.8-dbg - 1.8.5-4etch4
ruby1.8-dev - 1.8.5-4etch4
libdbm-ruby1.9 - 1.9.0+20060609-1etch4
libreadline-ruby1.8 - 1.8.5-4etch4
libreadline-ruby1.9 - 1.9.0+20060609-1etch4
libruby1.9-dbg - 1.9.0+20060609-1etch4
ruby1.9-dev - 1.9.0+20060609-1etch4
libtcltk-ruby1.9 - 1.9.0+20060609-1etch4
libgdbm-ruby1.8 - 1.8.5-4etch4
ruby1.9 - 1.9.0+20060609-1etch4
libdbm-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
arm:
libruby1.8 - 1.8.5-4etch4
libruby1.9-dbg - 1.9.0+20060609-1etch4
libdbm-ruby1.8 - 1.8.5-4etch4
libruby1.8-dbg - 1.8.5-4etch4
libtcltk-ruby1.8 - 1.8.5-4etch4
libruby1.9 - 1.9.0+20060609-1etch4
libgdbm-ruby1.8 - 1.8.5-4etch4
libreadline-ruby1.8 - 1.8.5-4etch4
ruby1.9-dev - 1.9.0+20060609-1etch4
ruby1.8-dev - 1.8.5-4etch4
libdbm-ruby1.9 - 1.9.0+20060609-1etch4
libreadline-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.9 - 1.9.0+20060609-1etch4
libopenssl-ruby1.8 - 1.8.5-4etch4
libtcltk-ruby1.9 - 1.9.0+20060609-1etch4
ruby1.8 - 1.8.5-4etch4
libgdbm-ruby1.9 - 1.9.0+20060609-1etch4
libopenssl-ruby1.9 - 1.9.0+20060609-1etch4
Статус уязвимости
Потенциальная уязвимость
Наличие эксплойта
Данные уточняются
Информация об устранении
Информация об устранении отсутствует
Идентификаторы других систем описаний уязвимостей
- CVE
- DSA
EPSS
Процентиль: 96%
0.30956
Средний
5 Medium
CVSS2
Связанные уязвимости
ubuntu
почти 17 лет назад
The regular expression engine (regex.c) in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows remote attackers to cause a denial of service (infinite loop and crash) via multiple long requests to a Ruby socket, related to memory allocation failure, and as demonstrated against Webrick.
redhat
почти 17 лет назад
The regular expression engine (regex.c) in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows remote attackers to cause a denial of service (infinite loop and crash) via multiple long requests to a Ruby socket, related to memory allocation failure, and as demonstrated against Webrick.
nvd
почти 17 лет назад
The regular expression engine (regex.c) in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows remote attackers to cause a denial of service (infinite loop and crash) via multiple long requests to a Ruby socket, related to memory allocation failure, and as demonstrated against Webrick.
debian
почти 17 лет назад
The regular expression engine (regex.c) in Ruby 1.8.5 and earlier, 1.8 ...
github
около 3 лет назад
The regular expression engine (regex.c) in Ruby 1.8.5 and earlier, 1.8.6 through 1.8.6-p286, 1.8.7 through 1.8.7-p71, and 1.9 through r18423 allows remote attackers to cause a denial of service (infinite loop and crash) via multiple long requests to a Ruby socket, related to memory allocation failure, and as demonstrated against Webrick.
EPSS
Процентиль: 96%
0.30956
Средний
5 Medium
CVSS2