VYPR
Unrated severityNVD Advisory· Published Mar 23, 2011· Updated Jun 16, 2026

CVE-2011-0188

CVE-2011-0188

Description

The VpMemAlloc function in bigdecimal.c in the BigDecimal class in Ruby 1.9.2-p136 and earlier, as used on Apple Mac OS X before 10.6.7 and other platforms, does not properly allocate memory, which allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via vectors involving creation of a large BigDecimal value within a 64-bit process, related to an "integer truncation issue."

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

23
  • Ruby Lang/Ruby22 versions
    cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*+ 21 more
    • cpe:2.3:a:ruby-lang:ruby:*:*:*:*:*:*:*:*range: <=1.9.2-p136
    • cpe:2.3:a:ruby-lang:ruby:1.9:*:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.0:*:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.0-0:*:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.0-1:*:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.0-2:*:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.0-20060415:*:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.0-20070709:*:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.0:r18423:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.1:*:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.1:-p0:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.1:-p129:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.1:-p243:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.1:-p376:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.1:-p429:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.1:-preview_1:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.1:-preview_2:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.1:-rc1:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.1:-rc2:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.2:*:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9.2:dev:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.9:r18423:*:*:*:*:*:*
  • Range: <=1.9.2-p136

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.