ELSA-2023-3821

Опубликовано: 08 июл. 2023

Источник: oracle-oval

Платформа: Oracle Linux 8

Описание

ELSA-2023-3821: ruby:2.7 security, bug fix, and enhancement update (MODERATE)

ruby [2.7.8-139]

Upgrade to Ruby 2.7.8. Resolves: rhbz#2149262
Fix HTTP response splitting in CGI. Resolves: CVE-2021-33621
Fix ReDoS vulnerability in URI. Resolves: CVE-2023-28755
Fix ReDoS vulnerability in Time. Resolves: CVE-2023-28756

rubygem-abrt [0.4.0-1]

Update to abrt 0.4.0. Resolves: rhbz#1842476

rubygem-bson [4.8.1-1]

Update to bson 4.8.1 by merging Fedora master branch (commit: 0741dbc) Resolves: rhbz#1817135

rubygem-mongo [2.11.3-1]

Update to mongo 2.11.3 by merging Fedora master branch (commit: c3f83c2) Resolves: rhbz#1817135

rubygem-mysql2 [0.5.3-2]

Update by merging Fedora rawhide branch (commit: 81e2cc9)
Fix Mysql2::Result test for Ruby 3.1.
Remove gem_make.out and mkmf.log files from the binary RPM package.
Fix test assertion for mariadb-connector-c. Related: rhbz#2063772

[0.5.3-1]

New upstream release 0.5.3 by merging Fedora master branch (commit: 674d475) Resolves: rhbz#1817135

[0.5.2-1]

New upstream release 0.5.2 by merging Fedora master branch (commit: cc15309) Resolves: rhbz#1672575

rubygem-pg [1.2.3-1]

Update to pg 1.2.3 by merging Fedora master branch (commit: 5db4d26) Resolves: rhbz#1817135

Обновленные пакеты

Oracle Linux 8

Oracle Linux aarch64

Module ruby:2.7 is enabled

ruby

2.7.8-139.module+el8.8.0+21111+2e34bf27

ruby-default-gems

2.7.8-139.module+el8.8.0+21111+2e34bf27

ruby-devel

2.7.8-139.module+el8.8.0+21111+2e34bf27

ruby-doc

2.7.8-139.module+el8.8.0+21111+2e34bf27

ruby-libs

2.7.8-139.module+el8.8.0+21111+2e34bf27

rubygem-abrt

0.4.0-1.module+el8.3.0+7760+537395ec

rubygem-abrt-doc

0.4.0-1.module+el8.3.0+7760+537395ec

rubygem-bigdecimal

2.0.0-139.module+el8.8.0+21111+2e34bf27

rubygem-bson

4.8.1-1.module+el8.4.0+20239+cbf59dc8

rubygem-bson-doc

4.8.1-1.module+el8.4.0+20239+cbf59dc8

rubygem-bundler

2.2.24-139.module+el8.8.0+21111+2e34bf27

rubygem-io-console

0.5.6-139.module+el8.8.0+21111+2e34bf27

rubygem-irb

1.2.6-139.module+el8.8.0+21111+2e34bf27

rubygem-json

2.3.0-139.module+el8.8.0+21111+2e34bf27

rubygem-minitest

5.13.0-139.module+el8.8.0+21111+2e34bf27

rubygem-mongo

2.11.3-1.module+el8.3.0+7760+537395ec

rubygem-mongo-doc

2.11.3-1.module+el8.3.0+7760+537395ec

rubygem-mysql2

0.5.3-1.module+el8.4.0+20239+cbf59dc8

rubygem-mysql2-doc

0.5.3-1.module+el8.4.0+20239+cbf59dc8

rubygem-net-telnet

0.2.0-139.module+el8.8.0+21111+2e34bf27

rubygem-openssl

2.1.4-139.module+el8.8.0+21111+2e34bf27

rubygem-pg

1.2.3-1.module+el8.4.0+20239+cbf59dc8

rubygem-pg-doc

1.2.3-1.module+el8.4.0+20239+cbf59dc8

rubygem-power_assert

1.1.7-139.module+el8.8.0+21111+2e34bf27

rubygem-psych

3.1.0-139.module+el8.8.0+21111+2e34bf27

rubygem-rake

13.0.1-139.module+el8.8.0+21111+2e34bf27

rubygem-rdoc

6.2.1.1-139.module+el8.8.0+21111+2e34bf27

rubygem-test-unit

3.3.4-139.module+el8.8.0+21111+2e34bf27

rubygem-xmlrpc

0.3.0-139.module+el8.8.0+21111+2e34bf27

rubygems

3.1.6-139.module+el8.8.0+21111+2e34bf27

rubygems-devel

3.1.6-139.module+el8.8.0+21111+2e34bf27

Oracle Linux x86_64

Module ruby:2.7 is enabled

ruby

2.7.8-139.module+el8.8.0+21111+2e34bf27

ruby-default-gems

2.7.8-139.module+el8.8.0+21111+2e34bf27

ruby-devel

2.7.8-139.module+el8.8.0+21111+2e34bf27

ruby-doc

2.7.8-139.module+el8.8.0+21111+2e34bf27

ruby-libs

2.7.8-139.module+el8.8.0+21111+2e34bf27

rubygem-abrt

0.4.0-1.module+el8.3.0+7760+537395ec

rubygem-abrt-doc

0.4.0-1.module+el8.3.0+7760+537395ec

rubygem-bigdecimal

2.0.0-139.module+el8.8.0+21111+2e34bf27

rubygem-bson

4.8.1-1.module+el8.4.0+20239+cbf59dc8

rubygem-bson-doc

4.8.1-1.module+el8.4.0+20239+cbf59dc8

rubygem-bundler

2.2.24-139.module+el8.8.0+21111+2e34bf27

rubygem-io-console

0.5.6-139.module+el8.8.0+21111+2e34bf27

rubygem-irb

1.2.6-139.module+el8.8.0+21111+2e34bf27

rubygem-json

2.3.0-139.module+el8.8.0+21111+2e34bf27

rubygem-minitest

5.13.0-139.module+el8.8.0+21111+2e34bf27

rubygem-mongo

2.11.3-1.module+el8.3.0+7760+537395ec

rubygem-mongo-doc

2.11.3-1.module+el8.3.0+7760+537395ec

rubygem-mysql2

0.5.3-1.module+el8.4.0+20239+cbf59dc8

rubygem-mysql2-doc

0.5.3-1.module+el8.4.0+20239+cbf59dc8

rubygem-net-telnet

0.2.0-139.module+el8.8.0+21111+2e34bf27

rubygem-openssl

2.1.4-139.module+el8.8.0+21111+2e34bf27

rubygem-pg

1.2.3-1.module+el8.4.0+20239+cbf59dc8

rubygem-pg-doc

1.2.3-1.module+el8.4.0+20239+cbf59dc8

rubygem-power_assert

1.1.7-139.module+el8.8.0+21111+2e34bf27

rubygem-psych

3.1.0-139.module+el8.8.0+21111+2e34bf27

rubygem-rake

13.0.1-139.module+el8.8.0+21111+2e34bf27

rubygem-rdoc

6.2.1.1-139.module+el8.8.0+21111+2e34bf27

rubygem-test-unit

3.3.4-139.module+el8.8.0+21111+2e34bf27

rubygem-xmlrpc

0.3.0-139.module+el8.8.0+21111+2e34bf27

rubygems

3.1.6-139.module+el8.8.0+21111+2e34bf27

rubygems-devel

3.1.6-139.module+el8.8.0+21111+2e34bf27

Связанные CVE

CVE-2023-28755

CVE-2023-28756

CVE-2021-33621

Ссылки на источники

Связанные уязвимости

SUSE-SU-2023:4176-1

suse-cvrf

больше 1 года назад

Security update for ruby2.5

ELSA-2024-1576

oracle-oval

около 1 года назад

ELSA-2024-1576: ruby:3.1 security, bug fix, and enhancement update (MODERATE)

ELSA-2024-1431

oracle-oval

больше 1 года назад

ELSA-2024-1431: ruby:3.1 security, bug fix, and enhancement update (MODERATE)

ELSA-2023-7025

oracle-oval

больше 1 года назад

ELSA-2023-7025: ruby:2.5 security update (MODERATE)

ELSA-2024-3838

oracle-oval

около 1 года назад

ELSA-2024-3838: ruby security update (MODERATE)