Slackware Advisory SSA:2009-120-01 Ruby Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2009-120-01.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2009-120-01

Insight

New ruby packages are available for Slackware 11.0, 12.0, 12.1, 12.2, and -current to fix a problem with REXML and other security issues. For details about the REXML issue, see: http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/ A full list may be found in the ChangeLog file included with the source code.

Severity

Classification

CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Slackware Advisory SSA:2005-172-01 sudo
Slackware Advisory SSA:2005-162-01 gaim
Slackware Advisory SSA:2003-141-01 EPIC4 security fixes
Slackware Advisory SSA:2005-310-05 PHP
Slackware Advisory SSA:2005-195-10 tcpdump DoS

Slackware Advisory SSA:2009-120-01 ruby

Take action and discover your vulnerabilities