Description
The str_buf_cat function in string.c in Ruby 1.9.3, 2.0.0, and 2.1 allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string.
Remediation
References
Related Vulnerabilities
Joomla! Core PHP Object Injection (2.5.4 - 3.8.12)
Squid Out-of-bounds Write Vulnerability (CVE-2019-12521)
phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2025-70810)
WordPress Plugin Save Contact Form 7 Information Disclosure (2.0)
Oracle Database Server CVE-2021-2234 Vulnerability (CVE-2021-2234)