732 matches found
[SECURITY] Fedora 18 Update: rubygem-multi_xml-0.4.1-5.fc18
A gem to provide swappable XML backends utilizing LibXML, Nokogiri, Ox, or REXML...
Slackware Advisory SSA:2009-120-01 ruby
The remote host is missing an update as announced via advisory SSA:2009-120-01. OpenVAS Vulnerability Test $Id: esoftslkssa200912001.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...
Slackware: Security Advisory (SSA:2009-120-01)
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Scientific Linux Security Update : ruby on SL3.x, SL4.x, SL5.x i386/x86_64
The Ruby DNS resolver library, resolv.rb, used predictable transaction IDs and a fixed source port when sending DNS requests. A remote attacker could use this flaw to spoof a malicious reply to a DNS query. CVE-2008-3905 Ruby's XML document parsing module REXML was prone to a denial of service...
Slackware 11.0 / 12.0 / 12.1 / 12.2 / current : ruby (SSA:2009-120-01)
New ruby packages are available for Slackware 11.0, 12.0, 12.1, 12.2, and -current to fix a problem with REXML and other security issues. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Slackware Security Advisory...
ruby
New ruby packages are available for Slackware 11.0, 12.0, 12.1, 12.2, and -current to fix a problem with REXML and other security issues. For details about the REXML issue, see: http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/ A full list may be found in the ChangeLog file...
Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : ruby1.8 vulnerabilities (USN-651-1)
Akira Tagoh discovered a vulnerability in Ruby which lead to an integer overflow. If a user or automated system were tricked into running a malicious script, an attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program...
Mandriva Linux Security Advisory : ruby (MDVSA-2008:226)
A denial of service condition was found in Ruby's regular expression engine. If a Ruby script tried to process a large amount of data via a regular expression, it could cause Ruby to enter an infinite loop and crash CVE-2008-3443. A number of flaws were found in Ruby that could allow an attacker ...
Ubuntu Update for ruby1.8 vulnerabilities USN-651-1
Ubuntu Update for Linux kernel vulnerabilities USN-651-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6511.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for ruby1.8 vulnerabilities USN-651-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...
RedHat Update for ruby RHSA-2008:0897-01
Check for the Version of ruby OpenVAS Vulnerability Test RedHat Update for ruby RHSA-2008:0897-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...
CentOS Update for irb CESA-2008:0897 centos4 x86_64
Check for the Version of irb OpenVAS Vulnerability Test CentOS Update for irb CESA-2008:0897 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
CentOS Update for irb CESA-2008:0897 centos4 i386
Check for the Version of irb OpenVAS Vulnerability Test CentOS Update for irb CESA-2008:0897 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
CentOS Update for irb CESA-2008:0897 centos4 i386
Check for the Version of irb OpenVAS Vulnerability Test CentOS Update for irb CESA-2008:0897 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...
CentOS Update for irb CESA-2008:0897 centos4 x86_64
Check for the Version of irb OpenVAS Vulnerability Test CentOS Update for irb CESA-2008:0897 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under th...
Debian Security Advisory DSA 1695-1 (ruby1.8, ruby1.9)
The remote host is missing an update to ruby1.8, ruby1.9 announced via advisory DSA 1695-1. OpenVAS Vulnerability Test $Id: deb16951.nasl 6615 2017-07-07 12:09:52Z cfischer $ Description: Auto-generated from advisory DSA 1695-1 ruby1.8, ruby1.9 Authors: Thomas Reinke Copyright: Copyright c 2009...
Debian: Security Advisory (DSA-1695-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] [DSA 1695-1] New Ruby packages fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1695-1 [email protected] http://www.debian.org/security/ Florian Weimer January 02, 2009 http://www.debian.org/security/faq -...
DSA-1695-1 ruby1.8 ruby1.9 - denial of service
Bulletin has no description...
GLSA-200812-17 : Ruby: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-200812-17 Ruby: Multiple vulnerabilities Multiple vulnerabilities have been discovered in the Ruby interpreter and its standard libraries. Drew Yao of Apple Product Security discovered the following flaws: Arbitrary code execution...
ruby: DoS vulnerability in the REXML module
The REXML module in Ruby 1.8.6 through 1.8.6-p287, 1.8.7 through 1.8.7-p72, and 1.9 allows context-dependent attackers to cause a denial of service CPU consumption via an XML document with recursively nested entities, aka an "XML entity explosion."...