Security update for ruby2.2, ruby2.3 SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2017:0933-1 Final 1 1 2017-04-05T08:20:50Z current 2017-04-05T08:20:50Z 2017-04-05T08:20:50Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for ruby2.2, ruby2.3 This update for ruby2.2, ruby2.3 fixes the following issues: Security issues fixed: - CVE-2016-2339: heap overflow vulnerability in the Fiddle::Function.new'initialize' (boo#1018808) - CVE-2015-7551: Unsafe tainted string usage in Fiddle and DL (boo#959495) Detailed ChangeLog: - http://svn.ruby-lang.org/repos/ruby/tags/v2_2_6/ChangeLog - http://svn.ruby-lang.org/repos/ruby/tags/v2_3_3/ChangeLog The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/opensuse-security-announce/2017-04/msg00007.html E-Mail link for openSUSE-SU-2017:0933-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings openSUSE Leap 42.1 openSUSE Leap 42.2 libruby2_2-2_2-2.2.6-6.3.1 libruby2_3-2_3-2.3.3-2.3.1 ruby2.2-2.2.6-6.3.1 ruby2.2-devel-2.2.6-6.3.1 ruby2.2-devel-extra-2.2.6-6.3.1 ruby2.2-doc-2.2.6-6.3.1 ruby2.2-doc-ri-2.2.6-6.3.1 ruby2.2-stdlib-2.2.6-6.3.1 ruby2.2-tk-2.2.6-6.3.1 ruby2.3-2.3.3-2.3.1 ruby2.3-devel-2.3.3-2.3.1 ruby2.3-devel-extra-2.3.3-2.3.1 ruby2.3-doc-2.3.3-2.3.1 ruby2.3-doc-ri-2.3.3-2.3.1 ruby2.3-stdlib-2.3.3-2.3.1 ruby2.3-tk-2.3.3-2.3.1 libruby2_2-2_2-2.2.6-6.3.1 as a component of openSUSE Leap 42.1 libruby2_3-2_3-2.3.3-2.3.1 as a component of openSUSE Leap 42.1 ruby2.2-2.2.6-6.3.1 as a component of openSUSE Leap 42.1 ruby2.2-devel-2.2.6-6.3.1 as a component of openSUSE Leap 42.1 ruby2.2-devel-extra-2.2.6-6.3.1 as a component of openSUSE Leap 42.1 ruby2.2-doc-2.2.6-6.3.1 as a component of openSUSE Leap 42.1 ruby2.2-doc-ri-2.2.6-6.3.1 as a component of openSUSE Leap 42.1 ruby2.2-stdlib-2.2.6-6.3.1 as a component of openSUSE Leap 42.1 ruby2.2-tk-2.2.6-6.3.1 as a component of openSUSE Leap 42.1 ruby2.3-2.3.3-2.3.1 as a component of openSUSE Leap 42.1 ruby2.3-devel-2.3.3-2.3.1 as a component of openSUSE Leap 42.1 ruby2.3-devel-extra-2.3.3-2.3.1 as a component of openSUSE Leap 42.1 ruby2.3-doc-2.3.3-2.3.1 as a component of openSUSE Leap 42.1 ruby2.3-doc-ri-2.3.3-2.3.1 as a component of openSUSE Leap 42.1 ruby2.3-stdlib-2.3.3-2.3.1 as a component of openSUSE Leap 42.1 ruby2.3-tk-2.3.3-2.3.1 as a component of openSUSE Leap 42.1 libruby2_2-2_2-2.2.6-6.3.1 as a component of openSUSE Leap 42.2 libruby2_3-2_3-2.3.3-2.3.1 as a component of openSUSE Leap 42.2 ruby2.2-2.2.6-6.3.1 as a component of openSUSE Leap 42.2 ruby2.2-devel-2.2.6-6.3.1 as a component of openSUSE Leap 42.2 ruby2.2-devel-extra-2.2.6-6.3.1 as a component of openSUSE Leap 42.2 ruby2.2-doc-2.2.6-6.3.1 as a component of openSUSE Leap 42.2 ruby2.2-doc-ri-2.2.6-6.3.1 as a component of openSUSE Leap 42.2 ruby2.2-stdlib-2.2.6-6.3.1 as a component of openSUSE Leap 42.2 ruby2.2-tk-2.2.6-6.3.1 as a component of openSUSE Leap 42.2 ruby2.3-2.3.3-2.3.1 as a component of openSUSE Leap 42.2 ruby2.3-devel-2.3.3-2.3.1 as a component of openSUSE Leap 42.2 ruby2.3-devel-extra-2.3.3-2.3.1 as a component of openSUSE Leap 42.2 ruby2.3-doc-2.3.3-2.3.1 as a component of openSUSE Leap 42.2 ruby2.3-doc-ri-2.3.3-2.3.1 as a component of openSUSE Leap 42.2 ruby2.3-stdlib-2.3.3-2.3.1 as a component of openSUSE Leap 42.2 ruby2.3-tk-2.3.3-2.3.1 as a component of openSUSE Leap 42.2 The Fiddle::Handle implementation in ext/fiddle/handle.c in Ruby before 2.0.0-p648, 2.1 before 2.1.8, and 2.2 before 2.2.4, as distributed in Apple OS X before 10.11.4 and other products, mishandles tainting, which allows context-dependent attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted string, related to the DL module and the libffi library. NOTE: this vulnerability exists because of a CVE-2009-5147 regression. CVE-2015-7551 openSUSE Leap 42.1:libruby2_2-2_2-2.2.6-6.3.1 openSUSE Leap 42.1:libruby2_3-2_3-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.2-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-devel-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-devel-extra-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-doc-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-doc-ri-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-stdlib-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-tk-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.3-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-devel-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-devel-extra-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-doc-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-doc-ri-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-stdlib-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-tk-2.3.3-2.3.1 openSUSE Leap 42.2:libruby2_2-2_2-2.2.6-6.3.1 openSUSE Leap 42.2:libruby2_3-2_3-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.2-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-devel-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-devel-extra-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-doc-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-doc-ri-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-stdlib-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-tk-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.3-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-devel-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-devel-extra-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-doc-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-doc-ri-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-stdlib-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-tk-2.3.3-2.3.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2017-04/msg00007.html https://www.suse.com/security/cve/CVE-2015-7551.html CVE-2015-7551 https://bugzilla.suse.com/939860 SUSE Bug 939860 https://bugzilla.suse.com/959495 SUSE Bug 959495 An exploitable heap overflow vulnerability exists in the Fiddle::Function.new "initialize" function functionality of Ruby. In Fiddle::Function.new "initialize" heap buffer "arg_types" allocation is made based on args array length. Specially constructed object passed as element of args array can increase this array size after mentioned allocation and cause heap overflow. CVE-2016-2339 openSUSE Leap 42.1:libruby2_2-2_2-2.2.6-6.3.1 openSUSE Leap 42.1:libruby2_3-2_3-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.2-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-devel-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-devel-extra-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-doc-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-doc-ri-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-stdlib-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.2-tk-2.2.6-6.3.1 openSUSE Leap 42.1:ruby2.3-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-devel-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-devel-extra-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-doc-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-doc-ri-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-stdlib-2.3.3-2.3.1 openSUSE Leap 42.1:ruby2.3-tk-2.3.3-2.3.1 openSUSE Leap 42.2:libruby2_2-2_2-2.2.6-6.3.1 openSUSE Leap 42.2:libruby2_3-2_3-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.2-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-devel-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-devel-extra-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-doc-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-doc-ri-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-stdlib-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.2-tk-2.2.6-6.3.1 openSUSE Leap 42.2:ruby2.3-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-devel-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-devel-extra-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-doc-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-doc-ri-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-stdlib-2.3.3-2.3.1 openSUSE Leap 42.2:ruby2.3-tk-2.3.3-2.3.1 moderate 6.8 AV:N/AC:M/Au:N/C:P/I:P/A:P Please Install the update. https://lists.opensuse.org/opensuse-security-announce/2017-04/msg00007.html https://www.suse.com/security/cve/CVE-2016-2339.html CVE-2016-2339 https://bugzilla.suse.com/1018808 SUSE Bug 1018808