aru Posted April 26, 2006 Report Share Posted April 26, 2006 Mandriva Advisories MDKSA-2006:079 : ruby Updated ruby packages fix vulnerability April 25th, 2006 A vulnerability in how ruby's HTTP module uses blocking sockets was reported by Yukihiro Matsumoto.By sending large amounts of data to a server application using this module, a remote attacker could exploit it to render the application unusable and not respond to other client requests. The updated packages have been patched to fix this problem. The released versions of Mandriva GNU/Linux affected are: CS3.0 10.2 2006.0 Full information about this advisory, including the updated packages, is available at: wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:079 Other references: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1931 Posted automatically by aru (mdksec2mub v: mdksec2mub,v 0.15 2005/11/24 16:53:12 aru Exp aru $) Link to comment Share on other sites More sharing options...
Recommended Posts