Description

The str_buf_cat function in string.c in Ruby 1.9.3, 2.0.0, and 2.1 allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string.

Remediation

References

CVE-2014-3916

Related Vulnerabilities

WordPress Plugin Dynamic Featured Image Unspecified Vulnerability (1.0.3)

ownCloud Improper Authentication Vulnerability (CVE-2020-10254)

PostgreSQL Missing Authorization Vulnerability (CVE-2024-4317)

Magento CVE-2020-9585 Vulnerability (CVE-2020-9585)

WordPress Plugin Shortlinks by Pretty Links-Best WordPress Link Tracking Multiple Cross-Site Scripting Vulnerabilities (2.1.2)

Severity

Medium

Classification

CVE-2014-3916

Tags

Missing Update Known Vulnerabilities