13 matches found
Ubuntu Update for ruby1.9 vulnerabilities USN-900-1
Ubuntu Update for Linux kernel vulnerabilities USN-900-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN9001.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for ruby1.9 vulnerabilities USN-900-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
Ubuntu: Security Advisory (USN-900-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 8.10 / 9.04 / 9.10 : ruby1.9 vulnerabilities (USN-900-1)
Emmanouel Kellinis discovered that Ruby did not properly handle certain string operations. An attacker could exploit this issue and possibly execute arbitrary code with application privileges. CVE-2009-4124 Giovanni Pellerano, Alessandro Tanasi, and Francesco Ongaro discovered that Ruby did not...
USN-900-1: Ruby vulnerabilities
Emmanouel Kellinis discovered that Ruby did not properly handle certain string operations. An attacker could exploit this issue and possibly execute arbitrary code with application privileges. CVE-2009-4124 Giovanni Pellerano, Alessandro Tanasi, and Francesco Ongaro discovered that Ruby did not...
Ruby Interpreter Heap Overflow Vulnerability (Windows) - Dec09
This host is installed with Ruby Interpreter and is prone to Heap Overflow vulnerability. OpenVAS Vulnerability Test $Id: secpodrubyheapbofvulnwindec09.nasl 8196 2017-12-20 12:13:37Z cfischer $ Ruby Interpreter Heap Overflow Vulnerability Windows - Dec09 Authors: Sujit Ghosal Copyright: Copyright...
Ruby Interpreter Heap Overflow Vulnerability (Dec 2009) - Linux
Ruby Interpreter is prone to a heap overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ruby-lang:ruby";...
Ruby Interpreter Heap Overflow Vulnerability (Dec 2009) - Windows
Ruby Interpreter is prone to a heap overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:ruby-lang:ruby";...
Ruby "rb_str_justify()"缓冲区溢出漏洞
CVE ID:CVE-2009-4124 Ruby是一款功能强大的面向对象的脚本语言。 Stringljust, Stringcenter和Stringrjust中存在堆溢出漏洞,允许攻击者在部分条件下执行任意代码。 问题存在于string.c代码中的"rbstrjustify"函数。目前没有详细漏洞细节提供。 Ruby 1.9.x Ruby 1.9.1-p376已经修复此漏洞,建议用户下载使用: ftp://ftp.ruby-lang.org/pub/ruby/1.9/ruby-1.9.1-p376.tar.bz2...
FreeBSD Ports: ruby
The remote host is missing an update to the system as announced in the referenced advisory. VID eab8c3bd-e50c-11de-9cd0-001a926c7637 OpenVAS Vulnerability Test $ Description: Auto generated from VID eab8c3bd-e50c-11de-9cd0-001a926c7637 Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc...
FreeBSD Ports: ruby
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
CVE-2009-4124
CVE-2009-4124 affects Ruby 1.9.x where a heap-based buffer overflow in rb_str_justify (string.c) allows context-dependent attackers to execute arbitrary code via String#ljust, String#center, or String#rjust. Affected versions are Ruby 1.9.1 prior to 1.9.1-p376. The vulnerability is classified wit...
CVE-2009-4124
Heap-based buffer overflow in the rbstrjustify function in string.c in Ruby 1.9.1 before 1.9.1-p376 allows context-dependent attackers to execute arbitrary code via unspecified vectors involving 1 Stringljust, 2 Stringcenter, or 3 Stringrjust. NOTE: some of these details are obtained from third...
CVE-2009-4124 ruby: Heap-based buffer overflow in the rb_str_justify() function
Heap-based buffer overflow in the rbstrjustify function in string.c in Ruby 1.9.1 before 1.9.1-p376 allows context-dependent attackers to execute arbitrary code via unspecified vectors involving 1 Stringljust, 2 Stringcenter, or 3 Stringrjust. NOTE: some of these details are obtained from third...