Vulnerability Manager Plus

Object-oriented scripting language (USN-3365-1) ruby1.9.1_1.9.3.484-2ubuntu1.3_i386.deb

Risk Information

Base Score

9.8

MODERATE

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score

Exploitation Probability

56.223%

CVE Information

Source CVE
CVE-2009-5147

Associated CVE
CVE-2009-5147
CVE-2016-2337
CVE-2015-1855
CVE-2015-7551
CVE-2015-9096

Patch Details

No records found

References

http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html
http://www.oracle.com/technetwork/topics/security/bulletinapr2016-2952098.html
https://support.apple.com/HT206167
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796344
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=796551
http://seclists.org/oss-sec/2015/q3/222
http://www.mbsd.jp/Whitepaper/smtpi.pdf
http://www.securityfocus.com/bid/76060
http://www.securityfocus.com/bid/91233
http://www.talosintelligence.com/reports/TALOS-2016-0031/
https://bugzilla.redhat.com/show_bug.cgi?id=1248935
https://github.com/ruby/ruby/commit/0827a7e52ba3d957a634b063bf5a391239b9ffee
https://github.com/ruby/ruby/commit/339e11a7f178312d937b7c95dd3115ce7236597a
https://github.com/ruby/ruby/commit/4600cf725a86ce31266153647ae5aa1197b1215b
https://github.com/rubysec/ruby-advisory-db/issues/215
https://hackerone.com/reports/137631
https://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-7551.html
https://puppet.com/security/cve/ruby-dec-2015-security-fixes
https://security.gentoo.org/glsa/201710-18
https://www.debian.org/security/2017/dsa-3966
https://www.ruby-lang.org/en/news/2015/12/16/unsafe-tainted-string-usage-in-fiddle-and-dl-cve-2015-7551/