DSA-1860 ruby1.8, ruby1.9 -- several vulnerabilitiesID: oval:org.mitre.oval:def:7853 | Date: (C)2009-12-15 (M)2023-08-07 |
Class: PATCH | Family: unix |
Several vulnerabilities have been discovered in Ruby. The Common Vulnerabilities and Exposures project identifies the following problems: The return value from the OCSP_basic_verify function was not checked properly, allowing continued use of a revoked certificate. An issue in parsing BigDecimal numbers can result in a denial-of-service condition (crash). The following matrix identifies fixed versions: We recommend that you upgrade your Ruby packages.
Platform: |
Debian 5.0 |
Debian 4.0 |