MDVSA-2012:024 -- Mandriva rubyID: oval:org.secpod.oval:def:1300045 | Date: (C)2013-04-08 (M)2022-10-10 |
Class: PATCH | Family: unix |
A vulnerability has been found and corrected in ruby: Ruby before 1.8.7-p357 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service via crafted input to an application that maintains a hash table . The updated packages have been patched to correct this issue.
Platform: |
Mandriva Enterprise Server 5.2 |