Mageia Bugzilla – Attachment 7334 Details for
Bug 17351
ruby new security issue CVE-2015-7551
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
Log In
[x]
|
New Account
|
Forgot Password
Minimal PoC for ruby Fiddle class
upload (text/plain), 213 bytes, created by
Len Lawrence
on 2016-01-10 18:23:10 CET
(
hide
)
Description:
Minimal PoC for ruby Fiddle class
Filename:
MIME Type:
Creator:
Len Lawrence
Created:
2016-01-10 18:23:10 CET
Size:
213 bytes
patch
obsolete
>$ ruby -rfiddle -e 't = Thread.new{ $SAFE = 1; Fiddle::Handle.new("libc.so.6".taint) }; t.value' >$ ruby -rfiddle -e 't = Thread.new{ c = Fiddle::Handle.new("libc.so.6") > $SAFE = 1; c["qsort".taint] }; t.value' > >
$ ruby -rfiddle -e 't = Thread.new{ $SAFE = 1; Fiddle::Handle.new("libc.so.6".taint) }; t.value' $ ruby -rfiddle -e 't = Thread.new{ c = Fiddle::Handle.new("libc.so.6") $SAFE = 1; c["qsort".taint] }; t.value'
View Attachment As Raw
Actions:
View
Attachments on
bug 17351
:
7334
|
7335
|
7336