Ruby BigDecimal Library Denial Of Service Vulnerability

info
discussion
exploit
solution
references

Ruby BigDecimal Library Denial Of Service Vulnerability

Ruby is prone to a denial-of-service vulnerability in its BigDecimal library.

Successful exploits may allow remote attackers to cause denial-of-service conditions in applications that use the vulnerable module.

Versions prior to Ruby 1.8.6-p369 and 1.8.7-p173 are affected.