Summary: | <dev-lang/ruby-1.8.7_p334-r1, dev-lang/ruby-enterprise: Memory allocation error could allow code execution or cause DoS (CVE-2011-0188) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Tim Sammut (RETIRED) <underling> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | alexanderyt, ruby |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://svn.ruby-lang.org/cgi-bin/viewvc.cgi/trunk/ext/bigdecimal/bigdecimal.c?r1=29364&r2=30993 | ||
Whiteboard: | B2 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Tim Sammut (RETIRED)
2011-05-29 04:15:41 UTC
rerating to B2 (special configuration + seldomly used extension) bump is coming soon This also needs to be fixed for dev-lang/ruby-enterprise Arches, please test and mark stable: =dev-lang/ruby-1.8.7_p334-r1 Target keywords : "alpha amd64 arm hppa ia64 ppc ppc64 s390 sh sparc x86" amd64 ok Stable on alpha. amd64 done. Thanks Agostino arm/x86 stable ppc done Stable for HPPA. ia64/s390/sh/sparc stable ppc64 stable, last arch done Thanks, everyone. Added to existing GLSA request. A quick note that dev-lang/ruby-enterprise has been treecleaned, so it is no longer relevant to this bug. This issue was resolved and addressed in GLSA 201412-27 at http://security.gentoo.org/glsa/glsa-201412-27.xml by GLSA coordinator Sean Amoss (ackle). |