ADVISORIES

• OSVDB-94679
• Vendor Advisory

GEM

enum_column3

PATCHED VERSIONS

None.

DESCRIPTION

The enum_column3 Gem for Ruby contains a flaw that may allow a remote denial of service. The issue is due to the program typecasting unexpected strings to symbols. This may allow a remote attacker to crash the program.

RELATED

• https://security.snyk.io/vuln/SNYK-RUBY-ENUMCOLUMN3-20100
• http://osvdb.org/show/osvdb/94679