Red Hat Bugzilla – Bug 138362
CAN-2004-0983 Denial of Service in Ruby
Last modified: 2007-11-30 17:07:04 EST
Upstream has fixed a denial of service issue in ruby. The CGI module
could enter into an infinite loop if a specially crafted request is
sent to it.
This issue also affects RHEL2.1
Created attachment 106289 [details]
Patch from upstream to fix this issue.
Thanks for letting me know. I'll work on this.
this issue should be fixed in 1.6.8-9.EL3.3 for RHEL3 and
1.6.4-2.AS21.1 for AS2.1
An errata has been issued which should help the problem
described in this bug report. This report is therefore being
closed with a resolution of ERRATA. For more information
on the solution and/or where to find the updated files,
please follow the link below. You may reopen this bug report
if the solution does not work for you.