Date: Sun, 30 Jul 2006 14:13:24 -0400 From: Randy Pratt <bsd-unix@earthlink.net> To: Frank Steinborn <steinex@nognu.de> Cc: freebsd@auscert.org.au, ports@freebsd.org, freebsd-security@freebsd.org, shaun@FreeBSD.org Subject: Re: Ruby vulnerability? Message-ID: <20060730141324.188a4a8e.bsd-unix@earthlink.net> In-Reply-To: <20060730154733.83EE6B828@shodan.nognu.de> References: <200607280503.k6S53hmW007056@app.auscert.org.au> <20060729163453.GA89895@picobyte.net> <20060730154733.83EE6B828@shodan.nognu.de>
next in thread | previous in thread | raw e-mail | index | archive | help
On Sun, 30 Jul 2006 17:47:33 +0200 Frank Steinborn <steinex@nognu.de> wrote: > Shaun Amott wrote: > > On Fri, Jul 28, 2006 at 03:03:43PM +1000, Joel Hatton wrote: > > > > > > FYI, Red Hat released an advisory today about a vulnerability in Ruby. So > > > far it doesn't appear in the VuXML, but am I correct in presuming it will > > > soon? > > > > > > > I've added it; thanks for the report. > > Hmm, i saw the flaw with "portaudit -Fda" yesterday, however - today > my ruby isn't shown as vulnerable anymore. Why? I show it as a vulnerability here. It could be that you may have gotten your last update from a server that hasn't caught up yet. Try running it again and see if that helps. Randy --
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20060730141324.188a4a8e.bsd-unix>