[ubuntu-l10n-it] Revisione: USN-371-1: ruby1.8 vulnerability

From: "Michele Angrisano" <mrmassi1@xxxxxxxxxxx>
To: ubuntu-l10n-it@xxxxxxxxxxxxx
Date: Sat, 11 Nov 2006 17:59:33 +0100

Link Forum: http://forum.ubuntu-it.org/index.php?topic=44692.0

________________________________________________________________________________________


Un problema di sicurezza interessa le seguenti versioni di Ubuntu:

Ubuntu 5.04
Ubuntu 5.10
Ubuntu 6.06 LTS
Ubuntu 6.10

Questo avviso si applica ugualmente alle versioni corrispondenti
di Kubuntu, di Edubuntu e di Xubuntu.

Il problema può essere corretto aggiornando il vostro sistema alle
seguenti versioni del pacchetto:

Ubuntu 5.04: libruby1.81.8.1+1.8.2pre4-1ubuntu0.5


Ubuntu 5.10:     libruby1.8                               1.8.2-9ubuntu1.3

Ubuntu 6.06 LTS:  libruby1.8                               1.8.4-1ubuntu1.2

Ubuntu 6.10:     libruby1.8                               1.8.4-5ubuntu1.1

In generale, un aggiornamento standard del sistema è sufficiente per
effettuare i cambiamenti necessari.


________________________________________________________________________________________


A security issue affects the following Ubuntu releases:

Ubuntu 5.04
Ubuntu 5.10
Ubuntu 6.06 LTS
Ubuntu 6.10

This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.

The problem can be corrected by upgrading your system to the
following package versions:

Ubuntu 5.04:
 libruby1.8                               1.8.1+1.8.2pre4-1ubuntu0.5

Ubuntu 5.10:
 libruby1.8                               1.8.2-9ubuntu1.3

Ubuntu 6.06 LTS:
 libruby1.8                               1.8.4-1ubuntu1.2

Ubuntu 6.10:
 libruby1.8                               1.8.4-5ubuntu1.1

In general, a standard system upgrade is sufficient to effect the
necessary changes.

Details follow:

An error was found in Ruby's CGI library that did not correctly check
for the end of multipart MIME requests.  Using a crafted HTTP request, a
remote user could cause a denial of service, where Ruby CGI applications
would end up in a loop, monopolizing a CPU.

_________________________________________________________________

Aggiungi i tuoi nuovi contatti di Hotmail anche in Messenger.Con un click!http://join.msn.com/hotmail/features-std#6

Follow-Ups:
- [ubuntu-l10n-it] Re: Revisione: USN-371-1: ruby1.8 vulnerability
  - From: Milo Casagrande

[ubuntu-l10n-it] Revisione: USN-371-1: ruby1.8 vulnerability

Other related posts: