7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.041 Low
EPSS
Percentile
90.9%
Several vulnerabilities have been discovered in the interpreter for the
Ruby language, which may lead to the bypass of security restrictions or
denial of service. The Common Vulnerabilities and Exposures project
identifies the following problems:
For the stable distribution (sarge) these problems have been fixed in
version 1.8.2-7sarge4.
For the unstable distribution (sid) these problems have been fixed in
version 1.8.4-3.
We recommend that you upgrade your Ruby packages.
CPE | Name | Operator | Version |
---|---|---|---|
ruby1.8 | eq | 1.8.2-7 | |
ruby1.8 | eq | 1.8.2-7sarge1 | |
ruby1.8 | eq | 1.8.2-7sarge2 |