rpm package
suse/ruby19&distro=SUSE Studio Onsite Runner 1.3
pkg:rpm/suse/ruby19&distro=SUSE%20Studio%20Onsite%20Runner%201.3
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-2339 | Cri | 9.8 | < 1.9.3.p392-0.26.1 | 1.9.3.p392-0.26.1 | Jan 6, 2017 | An exploitable heap overflow vulnerability exists in the Fiddle::Function.new "initialize" function functionality of Ruby. In Fiddle::Function.new "initialize" heap buffer "arg_types" allocation is made based on args array length. Specially constructed object passed as element of |
- affected < 1.9.3.p392-0.26.1fixed 1.9.3.p392-0.26.1
An exploitable heap overflow vulnerability exists in the Fiddle::Function.new "initialize" function functionality of Ruby. In Fiddle::Function.new "initialize" heap buffer "arg_types" allocation is made based on args array length. Specially constructed object passed as element of