From owner-freebsd-security@FreeBSD.ORG Fri Jul 28 05:03:46 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0115816A4DE; Fri, 28 Jul 2006 05:03:46 +0000 (UTC) (envelope-from freebsd@auscert.org.au) Received: from titania.auscert.org.au (gw.auscert.org.au [203.5.112.28]) by mx1.FreeBSD.org (Postfix) with ESMTP id 58A0743D45; Fri, 28 Jul 2006 05:03:44 +0000 (GMT) (envelope-from freebsd@auscert.org.au) Received: from app.auscert.org.au (app [10.0.1.192]) by titania.auscert.org.au (8.12.10/8.12.10) with ESMTP id k6S53huE011908; Fri, 28 Jul 2006 15:03:43 +1000 (EST) Received: from app.auscert.org.au (localhost.auscert.org.au [127.0.0.1]) by app.auscert.org.au (8.13.1/8.13.1) with ESMTP id k6S53hmW007056; Fri, 28 Jul 2006 15:03:43 +1000 (EST) (envelope-from freebsd@auscert.org.au) Message-Id: <200607280503.k6S53hmW007056@app.auscert.org.au> To: ports@freebsd.org from: Joel Hatton Date: Fri, 28 Jul 2006 15:03:43 +1000 X-Mailman-Approved-At: Fri, 28 Jul 2006 05:45:00 +0000 Cc: freebsd-security@freebsd.org Subject: Ruby vulnerability? X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Jul 2006 05:03:46 -0000 Hi, FYI, Red Hat released an advisory today about a vulnerability in Ruby. So far it doesn't appear in the VuXML, but am I correct in presuming it will soon? https://rhn.redhat.com/errata/RHSA-2006-0604.html http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3694 cheers, -- Joel Hatton -- Infrastructure Manager | Hotline: +61 7 3365 4417 AusCERT - Australia's national CERT | Fax: +61 7 3365 7031 The University of Queensland | WWW: www.auscert.org.au Qld 4072 Australia | Email: auscert@auscert.org.au