CVE-2016-2338
CVE-2016-2338 describes an exploitable heap overflow in Ruby’s Psych::Emitter.start_document where head is allocated based on the tags array length; specially crafted objects in tags can cause the allocation to exceed bounds. Connected advisories confirm this vulnerability and show the fix in Rub...