Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: S-344: Ruby Security Update
Special Forums Cybersecurity Security Advisories (RSS) S-344: Ruby Security Update Post 302219507 by Linux Bot on Tuesday 29th of July 2008 09:29:04 AM
Old 07-29-2008
S-344: Ruby Security Update
Multiple interger overflows to a heap overflow were discovered in the array- and string-handling code used by Ruby. The risk is MEDIUM. An attacker could use these flaws to crash a Ruby application or, possibly, execute arbitrary code with the privileges of the Ruby application using untrusted inputs in array or string operations.


More...
 

LEARN ABOUT DEBIAN

ruby-switch

RUBY-SWITCH(1)															    RUBY-SWITCH(1)

NAME

       ruby-switch - switch between different Ruby interpreters

USAGE

       ruby-switch --list

       ruby-switch --check

       ruby-switch --set RUBYVERSION

       ruby-switch --auto

DESCRIPTION

       ruby-switch can be used to easily switch to different Ruby interpreters as the default system-wide interpreter for your Debian system.

       When run with --list, all supported Ruby interpreters are listed.

       When --check is passed, ruby-switch will check which Ruby interpreter is currently being used. If the settings are inconsistent -- e.g.
	 `ruby` is Ruby 1.8 and `gem` is using Ruby 1.9.1, ruby-switch will issue a big warning.

       When --set RUBYINTERPRETER is used ruby-switch will switch your system to the corresponding Ruby interpreter. This includes, for example,
       the default implementations for the following programs: ruby, gem, irb, erb, testrb, rdoc, ri.

       ruby-switch --set auto will make your system use the default Ruby interpreter currently suggested by Debian.

OPTIONS

       -h, --help
	   Displays the help and exits.

A NOTE ON RUBY 1.9.x
       Ruby uses two parallel versioning schemes: the `Ruby library compatibility version' (1.9.1 at the time of writing this), which is similar
       to a library SONAME, and the `Ruby version' (1.9.3 is about to be released at the time of writing).

       Ruby packages in Debian are named using the Ruby library compatibility version, which is sometimes confusing for users who do not follow
       Ruby development closely.

       ruby-switch also uses the Ruby library compatibility version, so specifying `ruby1.9.1' might give you Ruby with version 1.9.2, or with
       version 1.9.3, depending on the current Ruby version of the `ruby1.9.1' package.

COPYRIGHT AND AUTHORS

       Copyright (c) 2011, Antonio Terceiro <terceiro@debian.org>

       This program is free software: you can redistribute it and/or modify it under the terms of the GNU General Public License as published by
       the Free Software Foundation, either version 3 of the License, or (at your option) any later version.

       This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of
       MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU General Public License for more details.

       You should have received a copy of the GNU General Public License along with this program.  If not, see <http://www.gnu.org/licenses/>.

								    2011-11-20							    RUBY-SWITCH(1)
All times are GMT -4. The time now is 07:51 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy