ports/105113: Ruby cgi.rb library has DoS vulnerability
UEDA Hiroyuki
BSDmad at gmail.com
Fri Nov 3 14:10:23 UTC 2006
>Number: 105113
>Category: ports
>Synopsis: Ruby cgi.rb library has DoS vulnerability
>Confidential: no
>Severity: critical
>Priority: high
>Responsible: freebsd-ports-bugs
>State: open
>Quarter:
>Keywords:
>Date-Required:
>Class: sw-bug
>Submitter-Id: current-users
>Arrival-Date: Fri Nov 03 14:10:18 GMT 2006
>Closed-Date:
>Last-Modified:
>Originator: UEDA Hiroyuki
>Release:
>Organization:
>Environment:
>Description:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-5467
http://www.ruby-lang.org/ja/news/2006/11/02/CVE-2006-5467/ (Japanese)
According these URL, Ruby cgi.rb library has DoS vulnerability.
>How-To-Repeat:
>Fix:
You can find a patch for this vulnerability as following URL:
http://ftp.ruby-lang.org/pub/ruby/1.8/ruby-1.8.5-cgi-dos-1.patch
>Release-Note:
>Audit-Trail:
>Unformatted:
More information about the freebsd-ports-bugs
mailing list