Oval Definition:	oval:com.ubuntu.precise:def:20111005000
Revision Date: 2011-03-02 Version: 1 Title: CVE-2011-1005 on Ubuntu 12.04 LTS (precise) - low. Description: The safe-level feature in Ruby 1.8.6 through 1.8.6-420, 1.8.7 through 1.8.7-330, and 1.8.8dev allows context-dependent attackers to modify strings via the Exception#to_s method, as demonstrated by changing an intended pathname. Family: unix Class: vulnerability Status: Reference(s): CVE-2011-1005 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'ruby1.8' package in precise is not affected. OR The 'ruby1.9.1' package in precise was vulnerable but has been fixed (note: '1.9.3.0-1ubuntu2.2').
BACK