 | |
| |||||||
| Home | Register | Projects | Blogs | FAQ | Calendar | Search | Today's Posts | Mark Forums Read | Free Directory | Free DNSReport | Tags |
| Notices |
| Advisories Discuss about all newly security flaws classed by CVE entries and reviewed by security experts |
CVE-2008-2725 (Ruby)This is a discussion on "CVE-2008-2725 (Ruby)" within the Advisories part of the Computer Security: Discussions section; Integer overflow in the rb_ary_splice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, and 1.8.7 before 1.8.7-p22 allows context-... |
 |
| | LinkBack | Thread Tools | Display Modes |
24-06-08
| |||
| |||
 CVE-2008-2725 (Ruby) Integer overflow in the rb_ary_splice function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, and 1.8.7 before 1.8.7-p22 allows context-dependent attackers to trigger memory corruption via unspecified vectors, aka the "REALLOC_N" variant, a different issue than CVE-2008-2662, CVE-2008-2663, and CVE-2008-2664. NOTE: as of 20080624, there has been inconsistent usage of multiple CVE identifiers related to Ruby. The CVE description should be regarded as authoritative... More...  |
| Sponsor | ||
| ||
| |
|
| Thread Tools | |
| Display Modes | |
Linear Mode
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| CVE-2008-3443 (Ruby) | Heap | Advisories | 0 | 15-08-08 18:44 |
| CVE-2008-2726 (Ruby) | Heap | Advisories | 0 | 24-06-08 23:08 |
| CVE-2008-2664 (Ruby) | Heap | Advisories | 0 | 24-06-08 23:08 |
| CVE-2008-2663 (Ruby) | Heap | Advisories | 0 | 24-06-08 23:08 |
| CVE-2008-2662 (Ruby) | Heap | Advisories | 0 | 24-06-08 23:08 |
