SUSE CVE-2008-2725

Integer overflow in the 1 rbarysplice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, and 1.8.7 before 1.8.7-p22; and 2 the rbaryreplace function in 1.6.x allows context-dependent attackers to trigger memory corruption via unspecified vectors, aka the...

Ruby rb_ary_fill()函数远程拒绝服务漏洞

BUGTRAQ ID: 30036 Ruby是一种功能强大的面向对象的脚本语言。 Ruby的rbaryfill函数中存在整数溢出漏洞： rbarymodifyary; end = beg + len; if end 0 rbraiserbeArgError, "argument too big"; if end RARRAYary-len if end = RARRAYary-aux.capa REALLOCNRARRAYary-ptr, VALUE, end; RARRAYary-aux.capa = end;...