19 matches found
Oracle Linux 3 : ruby (ELSA-2006-0729)
From Red Hat Security Advisory 2006:0729 : Updated ruby packages that fix a denial of service issue for the CGI instance are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for...
SLES9: Security update for ruby
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: ruby For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5020525 within the SuSE...
SLES9: Security update for ruby
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: ruby For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5020525 within the SuSE...
CentOS 3 / 4 : ruby (CESA-2006:0729)
Updated ruby packages that fix a denial of service issue for the CGI instance are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented programming. A flaw was discovered in...
FreeBSD Ports: ruby, ruby_static
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
SuSE 10 Security Update : ruby (ZYPP Patch Number 2224)
A denial of service problem in the CGI multipart parsing of 'ruby' was fixed, which could have allowed remote attackers to affect a denial of service attack against ruby based webservices. CVE-2006-5467 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C...
openSUSE 10 Security Update : ruby (ruby-2219)
A denial of service problem in the CGI multipart parsing of 'ruby' was fixed, which could have allowed remote attackers to affect a denial of service attack against ruby based webservices. CVE-2006-5467 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks i...
Mac OS X Multiple Vulnerabilities (Security Update 2007-005)
The remote host is running a version of Mac OS X 10.4 or 10.3 that does not have Security Update 2007-005 applied. This update fixes security flaws in the following applications : Alias Manager BIND CoreGraphics crontabs fetchmail file iChat mDNSResponder PPP ruby screen texinfo VPN C Tenable...
Fedora Core 5 : ruby-1.8.5-1.fc5 (2006-1110)
Fri Oct 27 2006 Akira TAGOH - 1.8.5-1 - security fix release. - ruby-1.8.5-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that causes the denial of service. 212396 - backport fixes from devel. - fixed rbconfig.rb to refer to DESTDIR for sitearchdir. 207311 - updates to 1.8.5 - removed...
Fedora Core 6 : ruby-1.8.5.2-1.fc6 (2006-1441)
Mon Dec 11 2006 Akira TAGOH - 1.8.5.2-1 - security fix release. 218289 - Fri Oct 27 2006 Akira TAGOH - 1.8.5-4 - security fix release. - ruby-1.8.5-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that causes the denial of service. 212396 - Sun Oct 1 2006 Jesse Keating - 1.8.5-3 - rebuilt...
Debian DSA-1235-1 : ruby1.8 - denial of service
A denial of service vulnerability has been discovered in the CGI library included with Ruby, the interpreted scripting language for quick and easy object-oriented programming. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracte...
Debian DSA-1234-1 : ruby1.6 - denial of service
A denial of service vulnerability has been discovered in the CGI library included with Ruby, the interpreted scripting language for quick and easy object-oriented programming. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracte...
[SECURITY] [DSA-1235-1] New ruby1.8 package fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1235-1 [email protected] http://www.debian.org/security/ Steve Kemp December 13, 2006 - ------------------------------------------------------------------------ Package : ruby1.8 Vulnerability...
[SECURITY] [DSA-1234-1] New ruby1.6 package fix denial of service
------------------------------------------------------------------------ Debian Security Advisory DSA-1234-1 [email protected] http://www.debian.org/security/ Steve Kemp December 13, 2006 - ------------------------------------------------------------------------ Package : ruby1.6 1.6.8-12sarge3...
Moderate ruby security update
1.8.1-7.EL4.8 - BR tcl-devel and tk-devel instead of tcl and tk. 1.8.1-7.EL4.7 - security fix release. - ruby-1.8.1-cgi-CVE-2006-5467.patch: fix a CGI multipart parsing bug that causes the denial of service. 212237 1.8.1-7.EL4.6 - security fixes CVE-2006-3694 - fixed the insecure operations on Di...
RHEL 2.1 / 3 / 4 : ruby (RHSA-2006:0729)
Updated ruby packages that fix a denial of service issue for the CGI instance are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented programming. A flaw was discovered in...
irb, ruby security update
CentOS Errata and Security Advisory CESA-2006:0729-01 Updated ruby packages that fix a denial of service issue for the CGI instance are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for...
irb, ruby security update
CentOS Errata and Security Advisory CESA-2006:0729 Updated ruby packages that fix a denial of service issue for the CGI instance are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for...
CVE-2006-5467
The CVE-2006-5467 issue affects Ruby 1.8’s CGI module (cgi.rb) and can cause a denial of service via a crafted multipart/form-data request with an invalid boundary. The vulnerability is specifically exploited in the CGI multipart parser, leading to an infinite loop and high CPU usage. Multiple ve...