---
engine: ruby
cve: 2009-5147
url: https://www.ruby-lang.org/en/news/2009/05/12/ruby-1-9-1-p129-released/
title: Ruby DL::dlopen could open a library with tainted library name even if $SAFE > 0
date: 2009-05-12
description: |
  DL::dlopen could open a library with tainted library name even if $SAFE > 0
unaffected_versions:
  - "< 1.9.1"
  - ">= 1.9.2"
patched_versions:
  - ~> 1.9.1.129