OVAL Reference oval:org.mitre.oval:def:7853

Oval Definition:

oval:org.mitre.oval:def:7853

Revision Date:	2014-06-23	Version:	19
Title:	DSA-1860 ruby1.8, ruby1.9 -- several vulnerabilities
Description:	Several vulnerabilities have been discovered in Ruby. The Common Vulnerabilities and Exposures project identifies the following problems: The return value from the OCSP_basic_verify function was not checked properly, allowing continued use of a revoked certificate. An issue in parsing BigDecimal numbers can result in a denial-of-service condition (crash). The following matrix identifies fixed versions: We recommend that you upgrade your Ruby packages.
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2009-0642 CVE-2009-1904 DSA-1860
Platform(s):	Debian GNU/Linux 4.0 Debian GNU/Linux 5.0	Product(s):	ruby1.8 ruby1.9
Definition Synopsis
Release section Debian GNU/Linux 5.0 is installed AND Architecture section Architecture independent section Installed architecture is all AND Packages section rdoc1.8 is earlier than 1.8.7.72-3lenny1 OR rdoc1.9 is earlier than 1.9.0.2-9lenny1 OR ri1.9 is earlier than 1.9.0.2-9lenny1 OR ri1.8 is earlier than 1.8.7.72-3lenny1 OR ruby1.8-examples is earlier than 1.8.7.72-3lenny1 OR ruby1.9-examples is earlier than 1.9.0.2-9lenny1 OR ruby1.8-elisp is earlier than 1.8.7.72-3lenny1 OR ruby1.9-elisp is earlier than 1.9.0.2-9lenny1 OR irb1.8 is earlier than 1.8.7.72-3lenny1 OR irb1.9 is earlier than 1.9.0.2-9lenny1 OR Architecture dependent section Supported architectures section Installed architecture is s390 OR Installed architecture is amd64 OR Installed architecture is sparc OR Installed architecture is arm OR Installed architecture is i386 OR Installed architecture is armel OR Installed architecture is mips OR Installed architecture is ia64 OR Installed architecture is alpha OR Installed architecture is powerpc OR Installed architecture is mipsel AND Packages section ruby1.8 is earlier than 1.8.7.72-3lenny1 OR libdbm-ruby1.8 is earlier than 1.8.7.72-3lenny1 OR ruby1.9-dev is earlier than 1.9.0.2-9lenny1 OR libopenssl-ruby1.9 is earlier than 1.9.0.2-9lenny1 OR libopenssl-ruby1.8 is earlier than 1.8.7.72-3lenny1 OR ruby1.8-dev is earlier than 1.8.7.72-3lenny1 OR libtcltk-ruby1.9 is earlier than 1.9.0.2-9lenny1 OR libreadline-ruby1.8 is earlier than 1.8.7.72-3lenny1 OR libreadline-ruby1.9 is earlier than 1.9.0.2-9lenny1 OR ruby1.9 is earlier than 1.9.0.2-9lenny1 OR libruby1.9-dbg is earlier than 1.9.0.2-9lenny1 OR libtcltk-ruby1.8 is earlier than 1.8.7.72-3lenny1 OR libgdbm-ruby1.8 is earlier than 1.8.7.72-3lenny1 OR libgdbm-ruby1.9 is earlier than 1.9.0.2-9lenny1 OR libdbm-ruby1.9 is earlier than 1.9.0.2-9lenny1 OR libruby1.8-dbg is earlier than 1.8.7.72-3lenny1 OR libruby1.8 is earlier than 1.8.7.72-3lenny1 OR libruby1.9 is earlier than 1.9.0.2-9lenny1 OR Architecture dependent section Installed architecture is hppa AND Packages section libreadline-ruby1.8 is earlier than 1.8.7.72-3lenny1 OR libdbm-ruby1.8 is earlier than 1.8.7.72-3lenny1 OR libopenssl-ruby1.8 is earlier than 1.8.7.72-3lenny1 OR ruby1.8-dev is earlier than 1.8.7.72-3lenny1 OR ruby1.8 is earlier than 1.8.7.72-3lenny1 OR libgdbm-ruby1.8 is earlier than 1.8.7.72-3lenny1 OR libtcltk-ruby1.8 is earlier than 1.8.7.72-3lenny1 OR libruby1.8-dbg is earlier than 1.8.7.72-3lenny1 OR libruby1.8 is earlier than 1.8.7.72-3lenny1 OR Release section Debian GNU/Linux 4.0 is installed. AND Architecture section Architecture independent section Installed architecture is all AND Packages section rdoc1.8 is earlier than 1.8.5-4etch5 OR rdoc1.9 is earlier than 1.9.0+20060609-1etch5 OR ri1.9 is earlier than 1.9.0+20060609-1etch5 OR ri1.8 is earlier than 1.8.5-4etch5 OR ruby1.8-examples is earlier than 1.8.5-4etch5 OR ruby1.9-examples is earlier than 1.9.0+20060609-1etch5 OR ruby1.8-elisp is earlier than 1.8.5-4etch5 OR ruby1.9-elisp is earlier than 1.9.0+20060609-1etch5 OR irb1.8 is earlier than 1.8.5-4etch5 OR irb1.9 is earlier than 1.9.0+20060609-1etch5 OR Architecture dependent section Supported architectures section Installed architecture is s390 OR Installed architecture is amd64 OR Installed architecture is arm OR Installed architecture is i386 OR Installed architecture is mips OR Installed architecture is ia64 OR Installed architecture is alpha OR Installed architecture is powerpc OR Installed architecture is mipsel AND Packages section ruby1.8 is earlier than 1.8.5-4etch5 OR libdbm-ruby1.8 is earlier than 1.8.5-4etch5 OR libdbm-ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR libopenssl-ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR libopenssl-ruby1.8 is earlier than 1.8.5-4etch5 OR ruby1.8-dev is earlier than 1.8.5-4etch5 OR libtcltk-ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR libreadline-ruby1.8 is earlier than 1.8.5-4etch5 OR libreadline-ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR ruby1.9-dev is earlier than 1.9.0+20060609-1etch5 OR ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR libruby1.9-dbg is earlier than 1.9.0+20060609-1etch5 OR libgdbm-ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR libgdbm-ruby1.8 is earlier than 1.8.5-4etch5 OR libtcltk-ruby1.8 is earlier than 1.8.5-4etch5 OR libruby1.8-dbg is earlier than 1.8.5-4etch5 OR libruby1.8 is earlier than 1.8.5-4etch5 OR libruby1.9 is earlier than 1.9.0+20060609-1etch5 OR Architecture dependent section Installed architecture is hppa AND Packages section ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR libdbm-ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR libopenssl-ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR ruby1.9-dev is earlier than 1.9.0+20060609-1etch5 OR libreadline-ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR libruby1.9-dbg is earlier than 1.9.0+20060609-1etch5 OR libtcltk-ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR libgdbm-ruby1.9 is earlier than 1.9.0+20060609-1etch5 OR libruby1.9 is earlier than 1.9.0+20060609-1etch5

BACK