Mandriva Linux Security Advisory : ruby (MDVSA-2009:160)
Medium Nessus Plugin ID 40398
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionThe BigDecimal library in Ruby 1.8.6 before p369 and 1.8.7 before p173 allows context-dependent attackers to cause a denial of service (application crash) via a string argument that represents a large number, as demonstrated by an attempted conversion to the Float data type.
This update corrects the problem.
SolutionUpdate the affected packages.