Ruby · Ruby · CVE-2014-3916
**Name of the Vulnerable Software and Affected Versions**
Ruby versions 1.9.3, 2.0.0, and 2.1
**Description**
The issue allows context-dependent attackers to cause a denial of service, resulting in a segmentation fault and crash, by utilizing a long string in the `str buf cat` function.
**Recommendations**
For Ruby version 1.9.3, update to a version that fixes the issue in the `str buf cat` function.
For Ruby version 2.0.0, update to a version that fixes the issue in the `str buf cat` function.
For Ruby version 2.1, update to a version that fixes the issue in the `str buf cat` function.