Yukihiro Matsumoto Ruby CGI Module Unspecified Denial Of Service Vulnerability

Solution:
Debian has released advisory (DSA 586-1) and fixes to address this vulnerability. Please see the referenced advisory for further details in regards to obtaining and installing appropriate updates.

Mandrake has released advisory MDKSA-2004:128 along with fixes to address this issue. Please see the referenced advisory for further information.

Ubuntu Linux has released advisory USN-20-1 along with fixes to address this issue. Please see the referenced advisory for further information.

RedHat has released advisories FEDORA-2004-402 and FEDORA-2004-403 dealing with this issue for their Fedora Core2 and Core 3 packages. Please see the referenced advisories for more information.

Gentoo Linux has made an advisory (GLSA 200411-23) available dealing with this issue. Gentoo has advised that all Ruby 1.6.x users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-lang/ruby-1.6.8-r12"

All Ruby 1.8.x users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose ">=dev-lang/ruby-1.8.2_pre3"

For more information please see the referenced Gentoo Linux advisory.

Red Hat has released an advisory (RHSA-2004:635-03) to address this issue in Red Hat Enterprise Linux. Please see the advisory in Web references for more information.

SGI has released advisory 20050101-01-U (SGI Advanced Linux Environment 3 Security Update #21) to address various issues in SGI Advanced Linux Environment 3. This advisory includes updated SGI ProPack 3 Service Pack 3 packages. Please see the referenced advisory for more information.

SGI has released advisory 20050101-01-U (SGI Advanced Linux Environment 3 Security Update #23) to address various issues in SGI Advanced Linux Environment 3. This advisory includes updated SGI ProPack 3 Service Pack 3 packages. Please see the referenced advisory for more information.

Turbolinux has released advisory Turbolinux Security Announcement 31/Jan/2005 to address various issues. Please see the referenced advisory for more information.

SuSE Linux has released a security summary report (SUSE-SR:2005:004) that contains fixes to address this and other vulnerabilities. Customers are advised to peruse the referenced advisory for further information regarding obtaining and applying appropriate updates.

The Fedora Legacy project has released advisory FLSA:152768 to address this issue in RedHat Linux 7.3, 9, and Fedora Core 1. Please see the referenced advisory for further information.


Yukihiro Matsumoto Ruby 1.6

Yukihiro Matsumoto Ruby 1.6.7

Yukihiro Matsumoto Ruby 1.8

Yukihiro Matsumoto Ruby 1.8.1

Yukihiro Matsumoto Ruby 1.8.2 pre2

Turbolinux Turbolinux Desktop 10.0

Turbolinux Turbolinux Server 10.0

SGI ProPack 3.0

Turbolinux Turbolinux Server 7.0

Turbolinux Turbolinux Workstation 7.0

Turbolinux Turbolinux Workstation 8.0

Turbolinux Turbolinux Server 8.0


 

Privacy Statement
Copyright 2010, SecurityFocus