File tree Expand file tree Collapse file tree 1 file changed +26
-0
lines changed Expand file tree Collapse file tree 1 file changed +26
-0
lines changed Original file line number Diff line number Diff line change 1+ ---
2+ gem : webrick
3+ cve : 2008-4310
4+ ghsa : wfrc-r6c6-7j9r
5+ url : https://bugzilla.redhat.com/show_bug.cgi?id=470252
6+ title : WEBrick Denial of Service Vulnerability
7+ date : 2008-12-08
8+ description : |
9+ httputils.rb in WEBrick in Ruby 1.8.1 and 1.8.5, as used in Red Hat
10+ Enterprise Linux 4 and 5, allows remote attackers to cause a
11+ denial of service (CPU consumption) via a crafted HTTP request.
12+
13+ NOTE: This issue exists because of an incomplete fix for CVE-2008-3656.
14+ cvss_v2 : 7.8
15+ patched_versions :
16+ - " >= 1.3.1"
17+ related :
18+ url :
19+ - https://nvd.nist.gov/vuln/detail/CVE-2008-4310
20+ - https://github.com/ruby/webrick/commit/b2ccd5ff7ddd67a4548299e110dcc5a4728a5534
21+ - http://www.openwall.com/lists/oss-security/2008/12/04/2
22+ - https://bugzilla.redhat.com/show_bug.cgi?id=470252
23+ - https://oval.cisecurity.org/repository/search/definition/oval
24+ - http://www.redhat.com/support/errata/RHSA-2008-0981.html
25+ - https://web.archive.org/web/20111230125610/http://secunia.com/advisories/33013
26+ - https://github.com/advisories/GHSA-wfrc-r6c6-7j9r
You can’t perform that action at this time.
0 commit comments