[FEDORA-2013-22423] Fedora 19: ruby
Severity
Medium
Affected Packages
1
CVEs
2
Update to Ruby 2.0.0-p353. This includes fix to an overflow in
floating point number parsing found in Ruby currently
being shipped on Fedora 20. This vulnerability has
been assigned the CVE identifier CVE-2013-4164. This
new rpm should fix this issue.
| Package | Affected Version |
|---|---|
 pkg:rpm/fedora/ruby?distro=fedora-19
|
< 2.0.0.353.16.fc19 |
- ID
- FEDORA-2013-22423
- Severity
- medium
- Severity from
- CVE-2013-4164
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2013-22423
- Published
-
2013-12-04T07:01:16
(10 years ago) - Modified
-
2013-12-04T07:01:16
(10 years ago) - Rights
- Copyright 2013 Red Hat, Inc.
- Other Advisories
-
-
ALAS-2013-247
-
ALAS-2013-248
-
DSA-2738-1
-
DSA-2809-1
-
DSA-2810-1
-
ELSA-2013-1090
-
ELSA-2013-1764
-
FEDORA-2013-12062
-
FEDORA-2013-12123
-
FEDORA-2013-12663
-
FEDORA-2013-22315
-
FEDORA-2013-22393
-
FREEBSD:CC9043CF-7F7A-426E-B2CC-8D1980618113
-
FREEBSD:EBD877B9-7EF4-4375-B1FD-C67780581898
-
GLSA-201412-27
-
RHSA-2013:1090
-
RHSA-2013:1764
-
SSA:2013-178-01
-
SSA:2013-350-06
-
USN-1902-1
-
USN-2035-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Bugzilla | 1033546 | Bug #1033546 - CVE-2013-4164 ruby: heap overflow in floating point parsing [fedora-all] |
|
| Bugzilla | 1034122 | Bug #1034122 - ruby-2.0.0.353 is available |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/fedora/ruby?distro=fedora-19 | fedora |
ruby
|
< 2.0.0.353.16.fc19 | fedora-19 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |