Description

Integer overflow in the rb_ary_fill function in array.c in Ruby before revision 17756 allows context-dependent attackers to cause a denial of service (crash) or possibly have unspecified other impact via a call to the Array#fill method with a start (aka beg) argument greater than ARY_MAX_SIZE. NOTE: this issue exists because of an incomplete fix for other closely related integer overflows.

Remediation

References

CVE-2008-2376

Related Vulnerabilities

Oracle JRE CVE-2020-2757 Vulnerability (CVE-2020-2757)

Piwigo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-33359)

Zope Web Application Server Improper Neutralization of Input During Web Page Generati (CVE-2010-1104)

WordPress Plugin Business Directory-Easy Listing Directories for WordPress Multiple Vulnerabilities (5.11.1)

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4441)

Severity

High

Classification

CVE-2008-2376

Tags

Missing Update Known Vulnerabilities