MGASA-2016-0007

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2015-7551

Published: 12 Jan 2016, 09:13

Last modified:16 Apr 2026, 06:24

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

12 Jan 2016, 09:13

Published

Vulnerability first disclosed

16 Apr 2026, 06:24

Last Modified

Vulnerability information updated

Description

Updated ruby packages fix security vulnerability There is an unsafe tainted string vulnerability in Fiddle and DL. This issue was originally reported and fixed with CVE-2009-5147 in DL, but reappeared after DL was reimplemented using Fiddle and libffi (CVE-2015-7551).

Affected Systems

mageia•ruby
< 2.0.0.p648-1.mga5

References (4)

https://advisories.mageia.org/MGASA-2016-0007.html
https://bugs.mageia.org/show_bug.cgi?id=17351
https://www.ruby-lang.org/en/news/2015/12/16/unsafe-tainted-string-usage-in-fiddle-and-dl-cve-2015-7551/
https://www.ruby-lang.org/en/news/2015/12/16/ruby-2-0-0-p648-released/