Wednesday
Jun102009
DoS vulnerability in BigDecimal
Wednesday, June 10, 2009 at 9:40AM A Denial of Service (DoS) vulnerability was found in the BigDecimal standard Ruby library. An attacker could cause a segmentation fault and crash the Ruby interpreter. This is due to the BigDecimal method mishandling certain large values. Almost every Rails application is vulnerable to this because ActiveRecord relies on this method.
You are advised to update your Ruby installation. There is a temporary fix on Github. This fix breaks valid formats supported by BigDecimal, so you are advised to plan migrating to a new Ruby version.
View Printer Friendly Version
Email Article to Friend
Reader Comments (6)
Even if you do correctly identify a DoS or DDoS attack, it is unlikely that you will be able to determine the actual target or source of the attack!
This Bottega Veneta Pleated Woven Tote is kind of big at about 11? x 11 x 6? and it really is adequate to carry your daily stuff. It has an open top to let you maximize its space, plus interior zip and cell phone pockets sit on the exact suede lining for storage. The exact handles are adjustable with buckle closure for you to carry this replica handbags Monogram Shimmer with ease.gmt watches replicas
The exact handles are adjustable with buckle closure for you to carry this replica handbags Monogram Shimmer with ease
Thanks for the advise. We should really careful from the attackers and update our Ruby installation to prevent from attackers in future. Cement Siding Richmond
To block the attackers from attacking the Ruby Installation and caused any damage to the installation its really a nice suggestion by Heiko to update the Ruby Installation with the latest version.6x8 Car Speakers
A typical look at does reflects your wealth, status and ability..replica hermes|