Lucene search

ruby -- Object taint bypassing in DL and Fiddle in Ruby

🗓️ 14 May 2013 00:00:00Reported by FreeBSDType

Ruby DL and Fiddle taint bypass vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 49
Slackware Linux	ruby	16 May 201315:44	–	slackware
Prion	Code injection	2 Nov 201319:55	–	prion
NVD	CVE-2013-2065	2 Nov 201319:55	–	nvd
Tenable Nessus	Fedora 18 : ruby-1.9.3.429-30.fc18 (2013-8375)	30 May 201300:00	–	nessus
Tenable Nessus	Fedora 19 : ruby-2.0.0.195-8.fc19 (2013-8738)	30 May 201300:00	–	nessus
Tenable Nessus	Slackware 13.1 / 13.37 / 14.0 / current : ruby (SSA:2013-136-02)	17 May 201300:00	–	nessus
Tenable Nessus	Fedora 17 : ruby-1.9.3.429-30.fc17 (2013-8411)	30 May 201300:00	–	nessus
Tenable Nessus	FreeBSD : ruby -- Object taint bypassing in DL and Fiddle in Ruby (79789daa-8af8-4e21-a47f-e8a645752bdb)	28 May 201300:00	–	nessus
Tenable Nessus	Amazon Linux AMI : ruby19 (ALAS-2013-229)	1 Oct 201300:00	–	nessus
Tenable Nessus	Ubuntu 12.04 LTS / 12.10 / 13.04 / 13.10 : ruby1.8, ruby1.9.1 vulnerabilities (USN-2035-1)	29 Nov 201300:00	–	nessus

Source	Link
ruby-lang	www.ruby-lang.org/en/news/2013/05/14/taint-bypass-dl-fiddle-cve-2013-2065/

OS	OS Version	Architecture	Package	Package Version	Filename
FreeBSD	any	noarch	ruby19	1.9.3.429,1	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 May 2013 00:00Current

5.8Medium risk

Vulners AI Score5.8

CVSS26.4

EPSS0.0035

ruby dl fiddle vulnerability taint system calls securityerror exception unix