Ruby 'OCSP_basic_verify()' X.509 Certificate Verification Vulnerability

Ruby 'OCSP_basic_verify()' X.509 Certificate Verification Vulnerability

Ruby is prone to an X.509 certificate-verification vulnerability.

Exploiting this issue may allow an attacker to have a revoked x.509 certificate accepted as valid. This may allow the attacker to conduct phishing attacks or to impersonate legitimate sites. Other attacks are also possible.

Ruby 1.8.7 and 1.9.1 are vulnerable; other versions may also be affected.