ruby1.9 - several vulnerabilities

Several vulnerabilities have been discovered in the interpreter for
the Ruby language, which may lead to denial of service or the
execution of arbitrary code. The Common Vulnerabilities and Exposures
project identifies the following problems:

• CVE-2008-2662
  Drew Yao discovered that multiple integer overflows in the string
  processing code may lead to denial of service and potentially the
  execution of arbitrary code.
• CVE-2008-2663
  Drew Yao discovered that multiple integer overflows in the string
  processing code may lead to denial of service and potentially the
  execution of arbitrary code.
• CVE-2008-2664
  Drew Yao discovered that a programming error in the string
  processing code may lead to denial of service and potentially the
  execution of arbitrary code.
• CVE-2008-2725
  Drew Yao discovered that an integer overflow in the array handling
  code may lead to denial of service and potentially the execution
  of arbitrary code.
• CVE-2008-2726
  Drew Yao discovered that an integer overflow in the array handling
  code may lead to denial of service and potentially the execution
  of arbitrary code.
• CVE-2008-2376
  It was discovered that an integer overflow in the array handling
  code may lead to denial of service and potentially the execution
  of arbitrary code.

For the stable distribution (etch), these problems have been fixed in
version 1.9.0+20060609-1etch2.

For the unstable distribution (sid), these problems have been fixed in
version 1.9.0.2-2.

We recommend that you upgrade your ruby1.9 packages.