Ruby vulnerability

2013-03-25T00:00:00
ID USN-1780-1
Type ubuntu
Reporter Ubuntu
Modified 2013-03-25T00:00:00

Description

Ben Murphy discovered that the Ruby REXML library incorrectly handled XML
entity expansion. An attacker could use this flaw to cause Ruby to consume
large amounts of memory, resulting in a denial of service.