Ruby update fixes hash flooding vulnerability
Source: H Security - Posted by Dave Wreski   
Vendors/Products The Ruby developers have released an update to the 1.9.3 series of their open source programming language, fixing a denial-of-service vulnerability. Ruby 1.9.3 patch level 327, labelled 1.9.3-p327, corrects a hash-flooding issue that could be exploited by an attacker to cause a high CPU load that can result in a denial-of-service. The problem can be caused by an error when parsing specially crafted sequences of strings.

Read this full article at H Security

Only registered users can write comments.
Please login or register.

Powered by AkoComment!