Slackware Advisory SSA:2009-120-01 Ruby Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2009-120-01.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2009-120-01

Insight

New ruby packages are available for Slackware 11.0, 12.0, 12.1, 12.2, and -current to fix a problem with REXML and other security issues. For details about the REXML issue, see: http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-rexml/ A full list may be found in the ChangeLog file included with the source code.

Severity

Classification

CVSS	Base Score: 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Slackware Advisory SSA:2006-208-01 firefox/thunderbird/seamonkey
Slackware Advisory SSA:2005-170-01 New Java packages
Slackware Advisory SSA:2006-298-01 qt
Slackware Advisory SSA:2003-141-06 quotacheck security fix in rc.M
Slackware Advisory SSA:2004-257-01 samba DoS

Slackware Advisory SSA:2009-120-01 ruby

Take action and discover your vulnerabilities