CVE-2016-2338

Published: 2/14/2020 Last updated: 8/5/2024 Reserved: 2/12/2016

An exploitable heap overflow vulnerability exists in the Psych::Emitter start_document function of Ruby. In Psych::Emitter start_document function heap buffer "head" allocation is made based on tags array length. Specially constructed object passed as element of tags array can increase this array size after mentioned allocation and cause heap overflow.

CNA assigner: certcc (37e5125f-f79b-445b-8fad-9564f167944b) Requested by: n/a

Opam packages affected (1)

conf-ruby

Products affected (1)

Product	Vendor	Version
n/a	n/a	< 9.0.0100

References (6)

https://lists.debian.org/debian-lts-announce/2020/03/msg00032.html
http://www.talosintelligence.com/reports/TALOS-2016-0032/
https://security.netapp.com/advisory/ntap-20221228-0005/
https://lists.debian.org/debian-lts-announce/2020/03/msg00032.html
http://www.talosintelligence.com/reports/TALOS-2016-0032/
https://security.netapp.com/advisory/ntap-20221228-0005/