CVE-2008-2376 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2008-2376
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-2376

Description: Integer overflow in the rb_ary_fill function in array.c in Ruby before revision 17756 allows context-dependent attackers to cause a denial of service (crash) or possibly have unspecified other impact via a call to the Array#fill method with a start (aka beg) argument greater than ARY_MAX_SIZE. NOTE: this issue exists because of an incomplete fix for other closely related integer overflows.

CVE Status: Candidate

References: SAID Secunia Advisory: SA30927 Secunia Advisory: SA31006 Secunia Advisory: SA31062 Secunia Advisory: SA31090 Secunia Advisory: SA31181 Secunia Advisory: SA31256 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0561.html MLIST http://www.openwall.com/lists/oss-security/2008/07/02/3 MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:140 http://www.mandriva.com/security/advisories?name=MDVSA-2008:141 http://www.mandriva.com/security/advisories?name=MDVSA-2008:142 FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1618 http://www.debian.org/security/2008/dsa-1612 CONFIRM http://wiki.rpath.com/Advisories:rPSA-2008-0218 http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0218 http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=rev&revision=17756 CERT http://www.us-cert.gov/cas/techalerts/TA08-260A.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/494104/100/0/threaded APPLE http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html

Return to the previous page.