Summary: | dev-lang/ruby <1.8.6_p114 NondisclosureName discloses files on case-insensitive FS (CVE-2008-1145) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Robert Buchholz (RETIRED) <rbu> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | fmccor, ruby |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.ruby-lang.org/en/news/2008/03/03/webrick-file-access-vulnerability/ | ||
Whiteboard: | C3 [noglsa] | ||
Package list: | Runtime testing required: | --- |
Description
Robert Buchholz (RETIRED)
2008-03-04 11:35:13 UTC
dev-lang/ruby-1.8.6_p114 is now in the tree, I've removed 1.8.5 and 1.8.4 Thanks, Richard. Arches, please test and mark stable: =dev-lang/ruby-1.8.6_p114 Target keywords : "alpha amd64 arm hppa ia64 ppc ppc64 release s390 sh sparc x86" ppc64 done Sparc stable. So far, all as expected. x86 stable alpha/ia64 stable ppc stable Stable for HPPA. amd64 stable Fixed in release snapshot. CVE-2008-1145 was assigned to this issue. All supported arches done, ready for vote. I vote NO. No too, and closing. |