Medium
Canonical Ubuntu
It was discovered that Ruby incorrectly handled certain X.509 certificates. An attacker could possibly use this issue to bypass the certificate check. (CVE-2018-16395)
It was discovered that Ruby incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code. (CVE-2018-16396)
CVEs contained in this USN include: CVE-2018-16395, CVE-2018-16396
Severity is medium unless otherwise noted.
Users of affected products are strongly encouraged to follow one of the mitigations below: