DOCUMENTATION

Views

Search

Toolbox

Advisories:rPSA-2008-0123

From rPath Wiki

Jump to: navigation, search

rPath Security Advisory 2008-0123-1

Published: 2008-03-25

Products

rPath Linux 1
rPath Appliance Platform Linux Service 1

Rating

Minor

Exposure Level Classification

Remote Deterministic Information Exposure

Updated Versions

ruby=conary.rpath.com@rpl:1/1.8.6_p114-1-0.1

rPath Issue Tracking System

RPL-2338

References

CVE-2008-1145

Description

Previous versions of the ruby package are vulnerable to an

Information Exposure when a WEBrick-based HTTP server is

enabled and configured to access a case-insensitive filesystem.

ruby is not installed by default on rPath Linux 1 systems; only

systems customized to include ruby and enable a WEBrick-based

HTTP server are vulnerable.

Copyright 2008 rPath, Inc. This file is distributed under the terms of the MIT License. A copy is available at http://www.rpath.com/permanent/mit-license.html

Retrieved from "http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0123"

Categories: Support Issue | Advisories