CVE-2008-2376

by Fred · 08/07/2008

Integer overflow in the rb_ary_fill function in array.c in Ruby before revision 17756 allows context-dependent attackers to cause a denial of service (crash) or possibly have unspecified other impact via a call to the Array#fill method with a start (aka beg) argument greater than ARY_MAX_SIZE. NOTE: this issue exists because of an incomplete fix for other closely related integer overflows.

Date published : 2008-07-08

http://lists.apple.com/archives/security-announce//2008/Sep/msg00005.html

http://www.securityfocus.com/archive/1/494104/100/0/threaded

CVE-2008-2376

Similar

Recent Posts

Categories

CVE-2008-2376

Share this:

Similar

Recent Posts

Categories

Tags