On October 22, in a security notice Canonical published details about Ruby 1.9.1 vulnerabilities for its Ubuntu 12.10 and Ubuntu 12.04 LTS operating systems.
According to Canonical, several security issues were fixed in Ruby. It was discovered that Ruby incorrectly allowed untainted strings to be modified in protective safe levels and it incorrectly allowed untainted strings to be modified, in protective safe levels.
These are the three Ruby 1.9.1 vulnerabilities found in packages for Ubuntu 12.10 and Ubuntu 12.04 LTS:
CVE-2012-4464,
CVE-2012-4466, and
CVE-2012-4522.
As usual, you can click on each one to see how it affects your system, or go
here for in-depth descriptions, as it affects other Linux operating systems as well.
The security flaws can be fixed if you upgrade your system(s) to the latest Ruby 1.9.1 package. To apply the update, run the Update Manager application.
In general, a standard system update will make all the necessary changes. A system restart won't be necessary to implement the changes.
Find us on Google+
No user comments yet.
Be the first to express your opinion!
