FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

ruby -- CGI DoS

Affected packages
1.7.* < ruby < 1.8.2.p2_2
ruby < 1.6.8.2004.07.28_1
1.7.* < ruby_r < 1.8.2.p2_2
ruby_r < 1.6.8.2004.07.28_1
a2001.05.12 <= ruby-1.7.0 <= a2001.05.26

Details

VuXML ID d656296b-33ff-11d9-a9e7-0001020eed82
Discovery 2004-11-06
Entry 2004-11-13
Modified 2004-11-25

The Ruby CGI.rb module contains a bug which can cause the CGI module to go into an infinite loop, thereby causing a denial-of-service situation on the web server by using all available CPU time.

References

CVE Name CVE-2004-0983
URL http://www.debian.org/security/2004/dsa-586