Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2017:0933-1

Опубликовано: 05 апр. 2017
Источник: suse-cvrf

Описание

Security update for ruby2.2, ruby2.3

This update for ruby2.2, ruby2.3 fixes the following issues:

Security issues fixed:

  • CVE-2016-2339: heap overflow vulnerability in the Fiddle::Function.new'initialize' (boo#1018808)
  • CVE-2015-7551: Unsafe tainted string usage in Fiddle and DL (boo#959495)

Detailed ChangeLog:

Список пакетов

openSUSE Leap 42.1
libruby2_2-2_2-2.2.6-6.3.1
libruby2_3-2_3-2.3.3-2.3.1
ruby2.2-2.2.6-6.3.1
ruby2.2-devel-2.2.6-6.3.1
ruby2.2-devel-extra-2.2.6-6.3.1
ruby2.2-doc-2.2.6-6.3.1
ruby2.2-doc-ri-2.2.6-6.3.1
ruby2.2-stdlib-2.2.6-6.3.1
ruby2.2-tk-2.2.6-6.3.1
ruby2.3-2.3.3-2.3.1
ruby2.3-devel-2.3.3-2.3.1
ruby2.3-devel-extra-2.3.3-2.3.1
ruby2.3-doc-2.3.3-2.3.1
ruby2.3-doc-ri-2.3.3-2.3.1
ruby2.3-stdlib-2.3.3-2.3.1
ruby2.3-tk-2.3.3-2.3.1
openSUSE Leap 42.2
libruby2_2-2_2-2.2.6-6.3.1
libruby2_3-2_3-2.3.3-2.3.1
ruby2.2-2.2.6-6.3.1
ruby2.2-devel-2.2.6-6.3.1
ruby2.2-devel-extra-2.2.6-6.3.1
ruby2.2-doc-2.2.6-6.3.1
ruby2.2-doc-ri-2.2.6-6.3.1
ruby2.2-stdlib-2.2.6-6.3.1
ruby2.2-tk-2.2.6-6.3.1
ruby2.3-2.3.3-2.3.1
ruby2.3-devel-2.3.3-2.3.1
ruby2.3-devel-extra-2.3.3-2.3.1
ruby2.3-doc-2.3.3-2.3.1
ruby2.3-doc-ri-2.3.3-2.3.1
ruby2.3-stdlib-2.3.3-2.3.1
ruby2.3-tk-2.3.3-2.3.1

Ссылки

Описание

The Fiddle::Handle implementation in ext/fiddle/handle.c in Ruby before 2.0.0-p648, 2.1 before 2.1.8, and 2.2 before 2.2.4, as distributed in Apple OS X before 10.11.4 and other products, mishandles tainting, which allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted string, related to the DL module and the libffi library. NOTE: this vulnerability exists because of a CVE-2009-5147 regression.

Затронутые продукты
openSUSE Leap 42.1:libruby2_2-2_2-2.2.6-6.3.1
openSUSE Leap 42.1:libruby2_3-2_3-2.3.3-2.3.1
openSUSE Leap 42.1:ruby2.2-2.2.6-6.3.1
openSUSE Leap 42.1:ruby2.2-devel-2.2.6-6.3.1
Ссылки

Описание

An exploitable heap overflow vulnerability exists in the Fiddle::Function.new "initialize" function functionality of Ruby. In Fiddle::Function.new "initialize" heap buffer "arg_types" allocation is made based on args array length. Specially constructed object passed as element of args array can increase this array size after mentioned allocation and cause heap overflow.

Затронутые продукты
openSUSE Leap 42.1:libruby2_2-2_2-2.2.6-6.3.1
openSUSE Leap 42.1:libruby2_3-2_3-2.3.3-2.3.1
openSUSE Leap 42.1:ruby2.2-2.2.6-6.3.1
openSUSE Leap 42.1:ruby2.2-devel-2.2.6-6.3.1
Ссылки
Уязвимость openSUSE-SU-2017:0933-1