Bugs fixes in "ruby2.0"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2016-2337 | Type confusion exists in _cancel_eval Ruby's TclTkIp class method. Attacker passing different type of object than String as "retval" argument can cau | 2017-07-25 |
| CVE | CVE-2015-9096 | Net::SMTP in Ruby before 2.4.0 is vulnerable to SMTP command injection via CRLF sequences in a RCPT TO or MAIL FROM command, as demonstrated by CRLF | 2017-07-25 |
| CVE | CVE-2015-7551 | The Fiddle::Handle implementation in ext/fiddle/handle.c in Ruby before 2.0.0-p648, 2.1 before 2.1.8, and 2.2 before 2.2.4, as distributed in Apple O | 2017-07-25 |
| CVE | CVE-2015-1855 | OpenSSL extension hostname matching implementation violates RFC 6125 | 2017-07-25 |
| CVE | CVE-2015-3900 | RubyGems 2.0.x before 2.0.16, 2.2.x before 2.2.4, and 2.4.x before 2.4.7 does not validate the hostname when fetching gems or making API request, whi | 2015-09-01 |
| CVE | CVE-2015-3900 | RubyGems 2.0.x before 2.0.16, 2.2.x before 2.2.4, and 2.4.x before 2.4.7 does not validate the hostname when fetching gems or making API request, whi | 2015-09-01 |
| CVE | CVE-2014-8090 | Incomplete fix for CVE-2014-8080 | 2014-11-23 |
| Debian | 733372 | ruby2.0: FTBFS: ossl_ssl.c:2179:65: error: 'SSL_OP_MSIE_SSLV2_RSA_PADDING' undeclared (first use in this function) - Debian Bug report logs | 2014-11-23 |
| CVE | CVE-2014-8090 | Incomplete fix for CVE-2014-8080 | 2014-11-23 |
| Debian | 733372 | ruby2.0: FTBFS: ossl_ssl.c:2179:65: error: 'SSL_OP_MSIE_SSLV2_RSA_PADDING' undeclared (first use in this function) - Debian Bug report logs | 2014-11-23 |
| CVE | CVE-2014-8090 | Incomplete fix for CVE-2014-8080 | 2014-11-20 |
| CVE | CVE-2014-8090 | Incomplete fix for CVE-2014-8080 | 2014-11-20 |
| CVE | CVE-2014-8090 | Incomplete fix for CVE-2014-8080 | 2014-11-20 |
| CVE | CVE-2014-8090 | Incomplete fix for CVE-2014-8080 | 2014-11-20 |
| CVE | CVE-2014-8080 | Denial Of Service XML Expansion | 2014-11-04 |
| CVE | CVE-2014-4975 | ruby pack.c buffer overrun | 2014-11-04 |
| CVE | CVE-2014-8080 | Denial Of Service XML Expansion | 2014-11-04 |
| CVE | CVE-2014-4975 | ruby pack.c buffer overrun | 2014-11-04 |
| CVE | CVE-2014-8080 | Denial Of Service XML Expansion | 2014-11-04 |
| CVE | CVE-2014-4975 | ruby pack.c buffer overrun | 2014-11-04 |
About
-
Send Feedback to @ubuntu_updates
