Debian Security Advisory DSA 537-1 – A problem in the CGI session management of Ruby, an object-oriented scripting language, allows a local attacker to compromise a session due to insecure file creation.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/34056/dsa-537.txt
Source: https://packetstormsecurity.com/files/34056/dsa-537.txt.html