Bugs fixes in "ruby1.9.1"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2017-0900 | RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications to cause a denial of service attack against RubyGems clie | 2017-10-05 |
| CVE | CVE-2017-0899 | RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications that include terminal escape characters. Printing the gem | 2017-10-05 |
| CVE | CVE-2017-0898 | Ruby before 2.4.2, 2.3.5, and 2.2.8 is vulnerable to a malicious format string which contains a precious specifier (*) with a huge minus value. Such | 2017-10-05 |
| CVE | CVE-2017-1406 | RESERVED | 2017-10-05 |
| CVE | CVE-2017-1403 | RESERVED | 2017-10-05 |
| CVE | CVE-2017-1074 | RESERVED | 2017-10-05 |
| CVE | CVE-2017-0901 | RubyGems version 2.6.12 and earlier fails to validate specification names, allowing a maliciously crafted gem to potentially overwrite any file on th | 2017-10-05 |
| CVE | CVE-2017-0900 | RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications to cause a denial of service attack against RubyGems clie | 2017-10-05 |
| CVE | CVE-2017-0899 | RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications that include terminal escape characters. Printing the gem | 2017-10-05 |
| CVE | CVE-2017-0898 | Ruby before 2.4.2, 2.3.5, and 2.2.8 is vulnerable to a malicious format string which contains a precious specifier (*) with a huge minus value. Such | 2017-10-05 |
| CVE | CVE-2017-1406 | RESERVED | 2017-10-05 |
| CVE | CVE-2017-1403 | RESERVED | 2017-10-05 |
| CVE | CVE-2017-1074 | RESERVED | 2017-10-05 |
| CVE | CVE-2017-0901 | RubyGems version 2.6.12 and earlier fails to validate specification names, allowing a maliciously crafted gem to potentially overwrite any file on th | 2017-10-05 |
| CVE | CVE-2017-0900 | RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications to cause a denial of service attack against RubyGems clie | 2017-10-05 |
| CVE | CVE-2017-0899 | RubyGems version 2.6.12 and earlier is vulnerable to maliciously crafted gem specifications that include terminal escape characters. Printing the gem | 2017-10-05 |
| CVE | CVE-2017-0898 | Ruby before 2.4.2, 2.3.5, and 2.2.8 is vulnerable to a malicious format string which contains a precious specifier (*) with a huge minus value. Such | 2017-10-05 |
| CVE | CVE-2017-1406 | RESERVED | 2017-10-05 |
| CVE | CVE-2017-1403 | RESERVED | 2017-10-05 |
| CVE | CVE-2017-1074 | RESERVED | 2017-10-05 |
About
-
Send Feedback to @ubuntu_updates
