Bug 486183 (CVE-2009-0642)
| Summary: | CVE-2009-0642 ruby: Incorrect checks for validity of X.509 certificates | ||
|---|---|---|---|
| Product: | [Other] Security Response | Reporter: | Jan Lieskovsky <jlieskov> |
| Component: | vulnerability | Assignee: | Red Hat Product Security <security-response-team> |
| Status: | CLOSED ERRATA | QA Contact: | |
| Severity: | medium | Docs Contact: | |
| Priority: | medium | ||
| Version: | unspecified | CC: | kreilly, mjc, tagoh |
| Target Milestone: | --- | Keywords: | Security |
| Target Release: | --- | ||
| Hardware: | All | ||
| OS: | Linux | ||
| URL: | http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=513528 | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2009-07-02 18:14:18 UTC | Type: | --- |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
| Embargoed: | |||
| Bug Depends On: | 505085, 505086, 505087, 505088 | ||
| Bug Blocks: | |||
|
Description
Jan Lieskovsky
2009-02-18 19:24:49 UTC
This issue does NOT affect the versions of the Ruby package, as shipped with Red Hat Enteprise Linux 2.1 and 3. This issue affects the versions of the Ruby package, as shipped with Red Hat Enterprise Linux 4 and 5. This issue affects the versions of the Ruby package, as shipped with Fedora releases of 9, 10 and devel. Can you file a bug for each releases? or we don't need it anymore? Upstream SVN commit: http://svn.ruby-lang.org/cgi-bin/viewvc.cgi?view=rev&revision=22440 Fixed in 1.8.6-p368 in F-10, F-11 and devel. This issue has been addressed in following products: Red Hat Enterprise Linux 4 Red Hat Enterprise Linux 5 Via RHSA-2009:1140 https://rhn.redhat.com/errata/RHSA-2009-1140.html |