FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

ruby -- multiple integer and buffer overflow vulnerabilities

Affected packages
1.8.*,1 <= ruby < 1.8.6.111_3,1
1.8.*,1 <= ruby+oniguruma < 1.8.6.111_3,1
1.8.*,1 <= ruby+pthreads < 1.8.6.111_3,1
1.8.*,1 <= ruby+pthreads+oniguruma < 1.8.6.111_3,1
1.8.*,1 <= ruby_static

Details

VuXML ID 53802164-3f7e-11dd-90ea-0019666436c2
Discovery 2008-06-19
Entry 2008-06-21

The official ruby site reports:

Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.

References

CVE Name CVE-2008-2726
URL http://www.ruby-lang.org/en/news/2008/06/20/arbitrary-code-execution-vulnerabilities/