AlmaLinux 2307 Published by

A ruby:2.5 security update has been released for AlmaLinux 8.



ALSA-2022:5779 ALSA-2022:5779: ruby:2.5 security update (Moderate)


Type:
security

Severity:
moderate

Release date:
2022-08-10

Description
Security Fix(es):
* ruby: Regular expression denial of service vulnerability of Date parsing methods (CVE-2021-41817)
* ruby: Cookie prefix spoofing in CGI::Cookie.parse (CVE-2021-41819)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:
ALSA-2022:5779

Updates packages:
rubygem-net-telnet-0.1.1-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-did_you_mean-1.2.0-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-power_assert-1.1.1-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygems-2.7.6.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
ruby-doc-2.5.9-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygem-rdoc-6.0.1.1-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
ruby-irb-2.5.9-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
ruby-devel-2.5.9-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygems-devel-2.7.6.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-xmlrpc-0.3.0-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygem-rake-12.3.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygem-test-unit-3.2.7-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
rubygem-minitest-5.10.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm
ruby-libs-2.5.9-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygem-json-2.1.0-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm
rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
ruby-libs-2.5.9-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
rubygem-json-2.1.0-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
ruby-devel-2.5.9-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm
ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
ruby-devel-2.5.9-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
ruby-libs-2.5.9-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-json-2.1.0-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.i686.rpm
rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm
ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm
rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm
rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm
rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm

Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.

  ALSA-2022:5779 ALSA-2022:5779: ruby:2.5 security update (Moderate)