-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ## ## Patch description of patch c28d786afb20c82c552cde5011cce640 ## Kind: security Shortdescription.english: Security update for ruby Longdescription.english: Applies to Package: ruby Product(s): Release: 20050120 Obsoletes: none Indications Everyone using ruby on webservers should update. Contraindications None. Problem description A bug in the Ruby CGI module allowed an attacker to cause an infinite loop on the server. This bug has been fixed (CAN-2004-0983). Solution Please install the updates provided at the location noted below. Installation notes This update is provided as an RPM package that can easily be installed onto a running system by using this command: rpm -Fvh ruby.rpm Hsilgne.noitpircsedgnol: Size: 925 MinYaST1Version: MinYaST2Version: UpdateOnlyInstalled: true Packages: ## ## -----> ruby <----- ## Filename: ruby.rpm Label: Interpreted object-oriented scripting language Series: i586 Size: 3004383 948071 PatchRpmBasedOn: 1.6.7-58 PatchRpmSize: 3004383 739227 Buildtime: 1105982376 DepAND: DepOR: DepExcl: Flag: Category: RpmGroup: Development/Languages/Other Copyright: GPL AuthorName: Yukihiro Matsumoto AuthorAddress: Version: 1.6.7-128 StartCommand: Obsoletes: Requires: /usr/bin/env ld-linux.so.2 libc.so.6 libc.so.6(GLIBC_2.0) libc.so.6(GLIBC_2.1) libc.so.6(GLIBC_2.1.3) libc.so.6(GLIBC_2.2) libcrypt.so.1 libcrypt.so.1(GLIBC_2.0) libdl.so.2 libdl.so.2(GLIBC_2.0) libdl.so.2(GLIBC_2.1) libgdbm.so.2 libm.so.6 libm.so.6(GLIBC_2.0) libncurses.so.5 libruby.so.1.6 rpmlib(PayloadIsBzip2) <= 3.0.5-1 Provides: curses.so dbm.so digest.so etc.so fcntl.so gdbm.so libruby.so.1.6 md5.so nkf.so pty.so rmd160.so sdbm.so sha1.so sha2.so socket.so syslog.so tkutil.so Segakcap: -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (GNU/Linux) iD8DBQFCC00UqE7a6JyACsoRAuytAJ4p4J0ZW14YKvehJJb/M47YktJlCwCf SXxDOHFCulcnL+0iHp5eba+71as= =dpGO -----END PGP SIGNATURE-----