Gentoo Security Advisory GLSA 200712-09 (ruby-gtk2) Network Vulnerability

Summary

The remote host is missing updates announced in advisory GLSA 200712-09.

Solution

All Ruby-GNOME2 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=dev-ruby/ruby-gtk2-0.16.0-r2' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200712-09 http://bugs.gentoo.org/show_bug.cgi?id=200623

Insight

A format string error has been discovered in Ruby-GNOME2, possibly leading to the execution of arbitrary code.

Severity

Classification

CVE CVE-2007-6183

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Gentoo Security Advisory GLSA 200403-05 (UUDeview)
Gentoo Security Advisory GLSA 200408-18 (xine-lib)
Gentoo Security Advisory GLSA 200404-01 (Portage)
Gentoo Security Advisory GLSA 200404-13 (cvs)
Gentoo Security Advisory GLSA 200410-26 (socat)

Take action and discover your vulnerabilities