Package: rubygems Version: 1.8.24-1 Severity: important Tags: security, fixed-upstream
RubyGems validates versions with a regular expression that is vulnerable to denial of service due to backtracking. For specially crafted RubyGems versions attackers can cause denial of service through CPU consumption. More information: http://www.openwall.com/lists/oss-security/2013/09/10/1 Please update affected versions accordingly and use CVE in the changelog. --- Henri Salo
signature.asc
Description: Digital signature
