The rb_str_format function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2 allows context-dependent attackers to trigger memory corruption via unspecified vectors related to alloca
Reporter | Title | Published | Views | Family All 119 |
---|---|---|---|---|
CVE | CVE-2008-2663 | 24 Jun 200819:41 | β | cve |
CVE | CVE-2008-2725 | 24 Jun 200819:41 | β | cve |
CVE | CVE-2008-2662 | 24 Jun 200819:41 | β | cve |
CVE | CVE-2008-2664 | 24 Jun 200819:41 | β | cve |
CVE | CVE-2008-2727 | 2 Sep 200814:24 | β | cve |
RubySec | CVE-2008-2663 ruby: Integer overflows in rb_ary_store() | 19 Jun 200820:00 | β | rubygems |
RubySec | CVE-2008-2662 ruby: Integer overflows in rb_str_buf_append() | 19 Jun 200820:00 | β | rubygems |
RubySec | CVE-2008-2664 ruby: Unsafe use of alloca in rb_str_format() | 19 Jun 200820:00 | β | rubygems |
RubySec | CVE-2008-2725 ruby: integer overflow in rb_ary_splice/update/replace() - REALLOC_N | 19 Jun 200820:00 | β | rubygems |
Cvelist | CVE-2008-2725 | 24 Jun 200819:00 | β | cvelist |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
ubuntu | 6.06 | noarch | ruby1.8 | 1.8.4-1ubuntu1.5 | UNKNOWN |
ubuntu | 7.04 | noarch | ruby1.8 | 1.8.5-4ubuntu2.2 | UNKNOWN |
ubuntu | 7.10 | noarch | ruby1.8 | 1.8.6.36-1ubuntu3.2 | UNKNOWN |
ubuntu | 8.04 | noarch | ruby1.8 | 1.8.6.111-2ubuntu1.1 | UNKNOWN |
ubuntu | 8.10 | noarch | ruby1.9 | 1.9.0.2-1ubuntu1 | UNKNOWN |
ubuntu | 9.04 | noarch | ruby1.9 | 1.9.0.2-1ubuntu1 | UNKNOWN |
ubuntu | 9.10 | noarch | ruby1.9 | 1.9.0.2-1ubuntu1 | UNKNOWN |
ubuntu | 10.04 | noarch | ruby1.9 | 1.9.0.2-1ubuntu1 | UNKNOWN |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. ContactΒ us for a demo andΒ discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo