A ruby:2.5 security update has been released for AlmaLinux 8.
ALSA-2022:5779 ALSA-2022:5779: ruby:2.5 security update (Moderate)
Type:
security
Severity:
moderate
Release date:
2022-08-10
Description
Security Fix(es):
* ruby: Regular expression denial of service vulnerability of Date parsing methods (CVE-2021-41817)
* ruby: Cookie prefix spoofing in CGI::Cookie.parse (CVE-2021-41819)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
ALSA-2022:5779
Updates packages:
rubygem-net-telnet-0.1.1-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-did_you_mean-1.2.0-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-power_assert-1.1.1-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygems-2.7.6.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
ruby-doc-2.5.9-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygem-rdoc-6.0.1.1-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
ruby-irb-2.5.9-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
ruby-devel-2.5.9-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygems-devel-2.7.6.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-xmlrpc-0.3.0-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygem-rake-12.3.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygem-test-unit-3.2.7-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-minitest-5.10.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
ruby-libs-2.5.9-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygem-json-2.1.0-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
ruby-libs-2.5.9-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
rubygem-json-2.1.0-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
ruby-devel-2.5.9-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
ruby-devel-2.5.9-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
ruby-libs-2.5.9-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-json-2.1.0-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm
ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm
rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm
rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm
rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.
ALSA-2022:5779 ALSA-2022:5779: ruby:2.5 security update (Moderate)