Oval Definition:oval:org.mitre.oval:def:22900
Revision Date:2014-05-26Version:24
Title:ELSA-2009:1140: ruby security update (Moderate)
Description:The BigDecimal library in Ruby 1.8.6 before p369 and 1.8.7 before p173 allows context-dependent attackers to cause a denial of service (application crash) via a string argument that represents a large number, as demonstrated by an attempted conversion to the Float data type.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2007-1558
CVE-2009-0642
CVE-2009-1904
ELSA-2009:1140-02
Platform(s):Oracle Linux 5
Product(s):ruby
Definition Synopsis
  • Oracle Linux 5.x
  • AND rpm test
  • ruby-ri is earlier than 0:1.8.5-5.el5_3.7
  • OR ruby-docs is earlier than 0:1.8.5-5.el5_3.7
  • OR ruby-mode is earlier than 0:1.8.5-5.el5_3.7
  • OR ruby-tcltk is earlier than 0:1.8.5-5.el5_3.7
  • OR ruby-libs is earlier than 0:1.8.5-5.el5_3.7
  • OR ruby-irb is earlier than 0:1.8.5-5.el5_3.7
  • OR ruby-rdoc is earlier than 0:1.8.5-5.el5_3.7
  • OR ruby is earlier than 0:1.8.5-5.el5_3.7
  • OR ruby-devel is earlier than 0:1.8.5-5.el5_3.7
    • BACK