From owner-freebsd-security@FreeBSD.ORG Sun Jul 30 09:10:18 2006 Return-Path: X-Original-To: freebsd-security@freebsd.org Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id C00C716A4DD; Sun, 30 Jul 2006 09:10:18 +0000 (UTC) (envelope-from sem@FreeBSD.org) Received: from mail.ciam.ru (ns.ciam.ru [213.247.195.75]) by mx1.FreeBSD.org (Postfix) with ESMTP id 59EB843D45; Sun, 30 Jul 2006 09:10:16 +0000 (GMT) (envelope-from sem@FreeBSD.org) Received: from [87.240.16.199] (helo=[192.168.0.4]) by mail.ciam.ru with esmtpa (Exim 4.x) id 1G77JJ-000FCa-KY; Sun, 30 Jul 2006 13:10:09 +0400 Message-ID: <44CC7751.5070704@FreeBSD.org> Date: Sun, 30 Jul 2006 13:09:37 +0400 From: Sergey Matveychuk User-Agent: Thunderbird 1.5.0.5 (X11/20060729) MIME-Version: 1.0 To: =?ISO-2022-JP?B?GyRCPyJFRBsoQiAbJEJNNUc3GyhC?= References: <20060729180904.GA90113@picobyte.net> <44CBBBDC.70409@FreeBSD.org> <20060730114238.F96A.UEDA@netforest.ad.jp> In-Reply-To: <20060730114238.F96A.UEDA@netforest.ad.jp> Content-Type: text/plain; charset=ISO-2022-JP Content-Transfer-Encoding: 7bit Cc: Joel Hatton , ports@freebsd.org, Remko Lodder , Shaun Amott , freebsd-security@freebsd.org Subject: Re: Ruby vulnerability? X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 30 Jul 2006 09:10:18 -0000 植田 裕之 wrote: > Dear Sirs, > > >> CVE report is very unpleasant: "Multiple unspecified vulnerabilities". >> Secunia has more professional report. >> >> RedHat is only vendor who released updates, but they are binary. So, >> there is no known fix now. > > Following information maybe help you: > > http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=378029 > Good. There is three patches there. I'll test if they fix the vulnerabilities. -- Dixi. Sem.