Wind River Support Network

HomeDefectsLIN7-7904

Fixed

LIN7-7904 : Security Advisory - ruby - CVE-2009-5147

Created: Apr 12, 2017 Updated: Sep 8, 2018

Resolved Date: Jun 15, 2017

Found In Version: 7.0.0.24

Fix Version: 7.0.0.26

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

DL::dlopen in Ruby 1.8, 1.9.0, 1.9.2, 1.9.3, 2.0.0 before patchlevel 648, and 2.1 before 2.1.8 opens libraries with tainted names.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2009-5147

Other Downloads

Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2009-5147