2 matches found
SUSE CVE-2014-2734
The openssl extension in Ruby 2.x does not properly maintain the state of process memory after a file is reopened, which allows remote attackers to spoof signatures within the context of a Ruby script that attempts signature verification after performing a certain sequence of filesystem operation...
CVE-2014-2734
The CVE-2014-2734 entry concerns the Ruby OpenSSL extension in Ruby 2.x, where the process memory state may not be correctly maintained after reopening a file, enabling remote attackers to spoof signatures during signature verification after specific filesystem operations. SUSE/PT-2019-4673 and P...