Lucene search
RedHatRHSA-2006:0729HistoryNov 08, 2006 - 12:00 a.m.
(RHSA-2006:0729) Moderate: ruby security update
2006-11-0800:00:00
access.redhat.com
15
EPSS
0.206
Percentile
96.4%
Ruby is an interpreted scripting language for object-oriented programming.
A flaw was discovered in the way Ruby’s CGI module handles certain
multipart/form-data MIME data. If a remote attacker sends a specially
crafted multipart-form-data request, it is possible to cause the ruby
CGI script to enter an infinite loop, causing a denial of service.
(CVE-2006-5467)
Users of Ruby should upgrade to these updated packages which contain
backported patches and are not vulnerable to these issues.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | any | s390x | ruby-mode | < 1.6.8-9.EL3.8 | ruby-mode-1.6.8-9.EL3.8.s390x.rpm |
| RedHat | any | ppc64 | ruby-libs | < 1.6.8-9.EL3.8 | ruby-libs-1.6.8-9.EL3.8.ppc64.rpm |
| RedHat | any | i386 | ruby-devel | < 1.8.1-7.EL4.8 | ruby-devel-1.8.1-7.EL4.8.i386.rpm |
| RedHat | any | ia64 | ruby-tcltk | < 1.8.1-7.EL4.8 | ruby-tcltk-1.8.1-7.EL4.8.ia64.rpm |
| RedHat | any | s390x | ruby-libs | < 1.6.8-9.EL3.8 | ruby-libs-1.6.8-9.EL3.8.s390x.rpm |
| RedHat | any | s390 | ruby-tcltk | < 1.8.1-7.EL4.8 | ruby-tcltk-1.8.1-7.EL4.8.s390.rpm |
| RedHat | any | ppc | ruby | < 1.8.1-7.EL4.8 | ruby-1.8.1-7.EL4.8.ppc.rpm |
| RedHat | any | ppc | ruby-tcltk | < 1.6.8-9.EL3.8 | ruby-tcltk-1.6.8-9.EL3.8.ppc.rpm |
| RedHat | any | s390x | ruby-docs | < 1.8.1-7.EL4.8 | ruby-docs-1.8.1-7.EL4.8.s390x.rpm |
| RedHat | any | s390 | irb | < 1.6.8-9.EL3.8 | irb-1.6.8-9.EL3.8.s390.rpm |
Related
nessus
nessus
RHEL 2.1 / 3 / 4 : ruby (RHSA-2006:0729)
2006-11-20 00:00:00
SuSE 10 Security Update : ruby (ZYPP Patch Number 2224)
2007-12-13 00:00:00
openSUSE 10 Security Update : ruby (ruby-2219)
2007-10-17 00:00:00
centos
centos
irb, ruby security update
2006-11-09 01:08:40
irb, ruby security update
2006-11-08 19:36:57
openvas
openvas
Debian: Security Advisory (DSA-1235-1)
2023-03-08 00:00:00
Ubuntu: Security Advisory (USN-371-1)
2022-08-26 00:00:00
FreeBSD Ports: ruby, ruby_static
2008-09-04 00:00:00
cve
cve
CVE-2006-5467
2006-10-27 18:07:00
CVE-2006-6303
2006-12-06 19:28:00
securityvulns
securityvulns
[OpenPKG-SA-2006.030] OpenPKG Security Advisory (ruby)
2006-11-05 00:00:00
freebsd
freebsd
ruby -- cgi.rb library Denial of Service
2006-10-25 00:00:00
debian
debian
[SECURITY] [DSA-1235-1] New ruby1.8 package fix denial of service
2006-12-13 12:18:52
[SECURITY] [DSA-1234-1] New ruby1.6 package fix denial of service
2006-12-13 12:12:07
ubuntu
ubuntu
Ruby vulnerability
2006-11-01 00:00:00
gentoo
gentoo
Ruby: Denial of Service vulnerability
2006-11-20 00:00:00
ubuntucve
ubuntucve
CVE-2006-5467
2006-10-27 00:00:00
CVE-2006-6303
2006-12-06 00:00:00
jvn
jvn
JVN#84798830 Denial of service vulnerability in Ruby CGI library (cgi.rb)
2006-12-04 00:00:00
cvelist
cvelist
CVE-2006-5467
2006-10-27 18:00:00
CVE-2006-6303
2006-12-06 19:00:00
nvd
nvd
CVE-2006-5467
2006-10-27 18:07:00
CVE-2006-6303
2006-12-06 19:28:00
oraclelinux
oraclelinux
Moderate ruby security update
2006-11-30 00:00:00
Moderate ruby security update
2006-11-30 00:00:00
seebug
seebug
Apple Mac OS X 2007-005多个安全漏洞
2007-05-25 00:00:00