info
discussion
exploit
solution
references
Ruby 'OCSP_basic_verify()' X.509 Certificate Verification Vulnerability
References:
possible bad handling of return value of OCSP_basic_verify in ext/openssl/ossl_o
(Lucas Nussbaum)
Ruby Homepage
(Ruby)
ruby1.9: Not properly checking the return value of CSP_basic_verify
(Kurt Roeckx)
[SECURITY] [DSA 1860-1] New Ruby packages fix several issues
(Debian)
ASA-2009-262
(Avaya)
Privacy Statement
Copyright 2010, SecurityFocus
