Canonical Plugs Ruby 1.8 Exploits in Ubuntu 12.10

view story

http://news.softpedia.com – On October 22, in a security notice Canonical published details about Ruby 1.8 vulnerabilities for its Ubuntu 12.10 (Quantal Quetzal) operating system. According to Canonical, Ruby 1.8 could have allowed excessive access in untrusted programs. Shugo Maedo and Vit Ondruch discovered that Ruby incorrectly allowed untainted strings to be modified in protective safe levels. An attacker could have used this flaw to bypass intended access restrictions. These a... (read more) (General)