VYPR
Unrated severityNVD Advisory· Published Aug 5, 2011· Updated Jun 16, 2026

CVE-2011-3009

CVE-2011-3009

Description

Ruby before 1.8.6-p114 does not reset the random seed upon forking, which makes it easier for context-dependent attackers to predict the values of random numbers by leveraging knowledge of the number sequence obtained in a different child process, a related issue to CVE-2003-0900.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • Ruby Lang/Ruby3 versions
    cpe:2.3:a:ruby-lang:ruby:1.8.6:p110:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:ruby-lang:ruby:1.8.6:p110:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:1.8.6:p36:*:*:*:*:*:*
    • cpe:2.3:a:ruby-lang:ruby:*:p111:*:*:*:*:*:*range: <=1.8.6
  • Range: <1.8.6p114

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.