Launchpad.net

CVE 2008-2662

Multiple integer overflows in the rb_str_buf_append function in Ruby 1.8.4 and earlier, 1.8.5 before 1.8.5-p231, 1.8.6 before 1.8.6-p230, 1.8.7 before 1.8.7-p22, and 1.9.0 before 1.9.0-2 allow context-dependent attackers to execute arbitrary code or cause a denial of service via unknown vectors that trigger memory corruption, a different issue than CVE-2008-2663, CVE-2008-2664, and CVE-2008-2725. NOTE: as of 20080624, there has been inconsistent usage of multiple CVE identifiers related to Ruby. This CVE description should be regarded as authoritative, although it is likely to change.

Related bugs and status

CVE-2008-2662 (Candidate) is related to these bugs:

Bug #241657: Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.

		In	Importance	Status
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.8 (Ubuntu)	Undecided	Fix Released
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.9 (Ubuntu)	High	Fix Released
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.8 (Ubuntu Dapper)	High	Fix Released
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.9 (Ubuntu Dapper)	High	Won't Fix
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.8 (Ubuntu Feisty)	High	Fix Released
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.9 (Ubuntu Feisty)	High	Won't Fix
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.8 (Ubuntu Hardy)	High	Fix Released
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.9 (Ubuntu Hardy)	High	Won't Fix
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.8 (Ubuntu Gutsy)	High	Fix Released
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.9 (Ubuntu Gutsy)	High	Won't Fix
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.8 (Debian)	Unknown	Fix Released
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.9 (Debian)	Unknown	Fix Released
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.8 (Ubuntu Intrepid)	Undecided	Fix Released
241657	Multiple vulnerabilities in Ruby may lead to a denial of service (DoS) condition or allow execution of arbitrary code.	ruby1.9 (Ubuntu Intrepid)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://blog.phusion.nl...
MISC: http://weblog.rubyonra...
MISC: http://www.matasano.co...
MISC: http://www.ruby-forum....
MISC: http://www.rubyinside....
MISC: http://www.zedshaw.com...
CONFIRM: http://www.ruby-lang.o...
CONFIRM: http://support.apple.c...
APPLE: APPLE-SA-2008-06-30
FEDORA: FEDORA-2008-5649
BID: 29903
SECTRACK: 1020347
SECUNIA: 30831
SECUNIA: 30802
DEBIAN: DSA-1612
REDHAT: RHSA-2008:0561
SECUNIA: 31062
SECUNIA: 31181
DEBIAN: DSA-1618
SUSE: SUSE-SR:2008:017
SECUNIA: 31256
SECUNIA: 31687
MANDRIVA: MDVSA-2008:140
MANDRIVA: MDVSA-2008:141
MANDRIVA: MDVSA-2008:142
CONFIRM: http://wiki.rpath.com/...
CONFIRM: https://issues.rpath.c...
UBUNTU: USN-621-1
SECUNIA: 30867
SECUNIA: 30875
SECUNIA: 30894
GENTOO: GLSA-200812-17
SECUNIA: 33178
VUPEN: ADV-2008-1907
VUPEN: ADV-2008-1981
SLACKWARE: SSA:2008-179-01
XF: ruby-rbstrbufappend-co...
OVAL: oval:org.mitre.oval:de...
BUGTRAQ: 20080626 rPSA-2008-020...