Threat level definition
Search:
Home
Bugtraq
Vulnerabilities
Mailing Lists
Jobs
Tools
Vista
News
Infocus
Foundations
Microsoft
Unix
IDS
Incidents
Virus
Pen-Test
Firewalls
Columnists
Mailing Lists
Newsletters
Bugtraq
Focus on IDS
Focus on Linux
Focus on Microsoft
Forensics
Pen-test
Security Basics
Vuln Dev
Vulnerabilities
Jobs
Job Opportunities
Resumes
Job Seekers
Employers
Tools
RSS
News
Vulns
Security Research
info
discussion
exploit
solution
references
Ruby Multiple Array and String Handling Functions Multiple Arbitrary Code Execution Vulnerabilities
References:
Bugzilla Bug 450821: CVE-2008-2662 ruby: Integer overflows in rb_str_buf_append
(Red Hat)
Bugzilla Bug 450825: CVE-2008-2663 ruby: Integer overflows in rb_ary_store()
(Red Hat)
Bugzilla Bug 450834: CVE-2008-2664 ruby: Unsafe use of alloca in rb_str_format(
(Red Hat)
Bugzilla Bug 451821: CVE-2008-2725 ruby: integer overflow in rb_ary_splice() (r
(Red Hat)
Bugzilla Bug 451828: CVE-2008-2726 ruby: integer overflow in rb_ary_splice() (r
(Red Hat)
About the security content of Security Update 2008-004 and Mac OS X 10.5.4
(Apple)
Arbitrary code execution vulnerabilities
(Ruby)
Ruby Homepage
(Yukihiro Matsumoto)
RHSA-2008:0561-7 Moderate: ruby security update
(Red Hat)
RHSA-2008:0562-5 Moderate: ruby security update
(Red Hat)
Privacy Statement
Copyright 2008, SecurityFocus
