CVE-2006-3694

Publication date 21 July 2006

Last updated 17 July 2025

Ubuntu priority

Multiple unspecified vulnerabilities in Ruby before 1.8.5 allow remote attackers to bypass "safe level" checks via unspecified vectors involving (1) the alias function and (2) "directory operations".

Status

Show unmaintained releases

Package	Ubuntu Release	Status
ruby1.8	7.04 feisty	Fixed 1.8.5-4ubuntu2
	6.10 edgy	Fixed 1.8.4-5ubuntu1.2
	6.06 LTS dapper	Fixed 1.8.4-1ubuntu1.3

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-325-1
ruby1.8 vulnerability
28 July 2006

Other references

https://www.cve.org/CVERecord?id=CVE-2006-3694