ELSA-2009-1140

Опубликовано: 02 июл. 2009

Источник: oracle-oval

Платформа: Oracle Linux 5

Описание

ELSA-2009-1140: ruby security update (MODERATE)

[1.8.5-5.el5_3.7]

security fixes. (#505087)
CVE-2007-1558: APOP password disclosure vulnerability.
CVE-2009-0642: Incorrect checks for validity of X.509 certificates.
CVE-2009-1904: DoS vulnerability in BigDecimal.

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

ruby

1.8.5-5.el5_3.7

ruby-devel

1.8.5-5.el5_3.7

ruby-docs

1.8.5-5.el5_3.7

ruby-irb

1.8.5-5.el5_3.7

ruby-libs

1.8.5-5.el5_3.7

ruby-mode

1.8.5-5.el5_3.7

ruby-rdoc

1.8.5-5.el5_3.7

ruby-ri

1.8.5-5.el5_3.7

ruby-tcltk

1.8.5-5.el5_3.7

Oracle Linux x86_64

ruby

1.8.5-5.el5_3.7

ruby-devel

1.8.5-5.el5_3.7

ruby-docs

1.8.5-5.el5_3.7

ruby-irb

1.8.5-5.el5_3.7

ruby-libs

1.8.5-5.el5_3.7

ruby-mode

1.8.5-5.el5_3.7

ruby-rdoc

1.8.5-5.el5_3.7

ruby-ri

1.8.5-5.el5_3.7

ruby-tcltk

1.8.5-5.el5_3.7

Oracle Linux i386

ruby

1.8.5-5.el5_3.7

ruby-devel

1.8.5-5.el5_3.7

ruby-docs

1.8.5-5.el5_3.7

ruby-irb

1.8.5-5.el5_3.7

ruby-libs

1.8.5-5.el5_3.7

ruby-mode

1.8.5-5.el5_3.7

ruby-rdoc

1.8.5-5.el5_3.7

ruby-ri

1.8.5-5.el5_3.7

ruby-tcltk

1.8.5-5.el5_3.7

Связанные CVE

CVE-2009-1904

CVE-2007-1558

CVE-2009-0642

Ссылки на источники

Связанные уязвимости

CVE-2009-1904

ubuntu

около 16 лет назад

The BigDecimal library in Ruby 1.8.6 before p369 and 1.8.7 before p173 allows context-dependent attackers to cause a denial of service (application crash) via a string argument that represents a large number, as demonstrated by an attempted conversion to the Float data type.

CVE-2009-1904

redhat

около 16 лет назад

CVE-2009-1904

nvd

около 16 лет назад

CVE-2009-1904

debian

около 16 лет назад

The BigDecimal library in Ruby 1.8.6 before p369 and 1.8.7 before p173 ...

GHSA-prwc-wj59-8vwr

github

около 3 лет назад