Описание
ELSA-2008-0981: ruby security update (MODERATE)
[1.8.5-5.el5_2.6]
- security fix (#470262)
- CVE-2008-4310: real fix for CVE-2008-3656. original patch named as fix for CVE-2008-3656 actually fixed different issue (CVE-2008-1145), hence we are providing correct patch and renaming original patch to refer to proper CVE.
Обновленные пакеты
Oracle Linux 5
Oracle Linux x86_64
ruby
1.8.5-5.el5_2.6
ruby-devel
1.8.5-5.el5_2.6
ruby-docs
1.8.5-5.el5_2.6
ruby-irb
1.8.5-5.el5_2.6
ruby-libs
1.8.5-5.el5_2.6
ruby-mode
1.8.5-5.el5_2.6
ruby-rdoc
1.8.5-5.el5_2.6
ruby-ri
1.8.5-5.el5_2.6
ruby-tcltk
1.8.5-5.el5_2.6
Oracle Linux i386
ruby
1.8.5-5.el5_2.6
ruby-devel
1.8.5-5.el5_2.6
ruby-docs
1.8.5-5.el5_2.6
ruby-irb
1.8.5-5.el5_2.6
ruby-libs
1.8.5-5.el5_2.6
ruby-mode
1.8.5-5.el5_2.6
ruby-rdoc
1.8.5-5.el5_2.6
ruby-ri
1.8.5-5.el5_2.6
ruby-tcltk
1.8.5-5.el5_2.6
Связанные CVE
Связанные уязвимости
httputils.rb in WEBrick in Ruby 1.8.1 and 1.8.5, as used in Red Hat Enterprise Linux 4 and 5, allows remote attackers to cause a denial of service (CPU consumption) via a crafted HTTP request. NOTE: this issue exists because of an incomplete fix for CVE-2008-3656.
httputils.rb in WEBrick in Ruby 1.8.1 and 1.8.5, as used in Red Hat Enterprise Linux 4 and 5, allows remote attackers to cause a denial of service (CPU consumption) via a crafted HTTP request. NOTE: this issue exists because of an incomplete fix for CVE-2008-3656.
httputils.rb in WEBrick in Ruby 1.8.1 and 1.8.5, as used in Red Hat En ...
