13 matches found
Scientific Linux Security Update : ruby on SL5.x, SL4.x i386/x86_64
A flaw was discovered in the way Ruby's CGI module handles certain HTTP requests. If a remote attacker sends a specially crafted request, it is possible to cause the ruby CGI script to enter an infinite loop, possibly causing a denial of service. CVE-2006-6303 An SSL certificate validation flaw w...
SLES9: Security update for ruby
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: ruby For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5009168 within the SuSE...
SLES9: Security update for ruby
The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: ruby For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 5009168 within the SuSE...
SuSE9 Security Update : ruby (YOU Patch Number 11442)
The ruby package was updated to fix a denial of service problem in its CGI module when parsing multipart MIME messages. CVE-2006-6303 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; i...
CentOS 4 : ruby (CESA-2007:0961)
Updated ruby packages that fix several security issues are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting language for object-oriented programming. A flaw was...
CentOS Update for ruby CESA-2008:0562-01 centos2 i386
Check for the Version of ruby OpenVAS Vulnerability Test CentOS Update for ruby CESA-2008:0562-01 centos2 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
irb, ruby security update
CentOS Errata and Security Advisory CESA-2008:0562 Updated ruby packages that fix several security issues are now available for Red Hat Enterprise Linux 2.1 and 3. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Ruby is an interpreted scripting...
SuSE 10 Security Update : ruby (ZYPP Patch Number 2654)
The ruby package was updated to fix a denial of service problem in its CGI module when parsing multipart MIME messages. CVE-2006-6303 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; i...
Moderate: ruby security update
1.8.5-5.el51.1 - security fix for CVE-2007-5162 and CVE-2007-5770 - ruby-1.8.5-CVE-2007-5162.patch: fix issues that is insufficient verification of SSL certificate. 320331 - Fix the multilib regression issue. 1.8.5-5 - security fix release. - ruby-1.8.5-cgi-CVE-2006-6303.patch: fix a infinite loo...
openSUSE 10 Security Update : ruby (ruby-2655)
The ruby package was updated to fix a denial of service problem in its CGI module when parsing multipart MIME messages. CVE-2006-6303 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update ruby-2655...
Mac OS X Multiple Vulnerabilities (Security Update 2007-005)
The remote host is running a version of Mac OS X 10.4 or 10.3 that does not have Security Update 2007-005 applied. This update fixes security flaws in the following applications : Alias Manager BIND CoreGraphics crontabs fetchmail file iChat mDNSResponder PPP ruby screen texinfo VPN C Tenable...
[ MDKSA-2006:225 ] - Updated ruby packages fix DoS vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2006:225 http://www.mandriva.com/security/ Package : ruby Date : December 6, 2006 Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0 Problem Description: Another vulnerability has been discovered in the CGI...
CVE-2006-6303
CVE-2006-6303 affects Ruby’s CGI module (read_multipart) where boundaries in MIME multipart content aren’t detected correctly, allowing remote attackers to trigger an infinite loop and cause a denial of service. The issue is in Ruby before 1.8.5-p2; Oracle Linux/RH advisories backported fixes and...