ELSA-2024-1576

Опубликовано: 02 апр. 2024

Источник: oracle-oval

Платформа: Oracle Linux 9

Описание

ELSA-2024-1576: ruby:3.1 security, bug fix, and enhancement update (MODERATE)

ruby [3.1.4-143]

Upgrade to Ruby 3.1.4. Resolves: RHEL-5586
Fix HTTP response splitting in CGI. Resolves: RHEL-5591
Fix ReDos vulnerability in URI. Resolves: RHEL-28919 Resolves: RHEL-5612
Fix ReDos vulnerability in Time. Resolves: RHEL-28920
Make RDoc soft dependency in IRB. Resolves: RHEL-5613

[3.1.2-142]

Bypass git submodule test failure on Git >= 2.38.1.
Fix tests with Europe/Amsterdam pre-1970 time on tzdata version 2022b.
Fix for tzdata-2022g.
Fix OpenSSL.fips_mode and OpenSSL::PKey.read in OpenSSL 3 FIPS. Resolves: RHEL-5590
ssl: use ffdhe2048 from RFC 7919 as the default DH group parameters Related: RHEL-5590
Disable fiddle tests that use FFI closures. Related: RHEL-5590

rubygem-mysql2 [0.5.4-1]

New upstream release 0.5.4 by merging Fedora rawhide branch (commit: e21b5b9) Resolves: rhbz#2063773

[0.5.3-1]

New upstream release 0.5.3 by merging Fedora master branch (commit: 674d475) Resolves: rhbz#1817135

rubygem-pg [1.3.5-1]

Update to pg 1.3.5 Related: rhbz#2063773

[1.2.3-1]

Update to pg 1.2.3 by merging Fedora master branch (commit: 5db4d26) Resolves: rhbz#1817135

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

Module ruby:3.1 is enabled

ruby

3.1.4-143.module+el9.3.0+90207+bf8fadcb

ruby-bundled-gems

3.1.4-143.module+el9.3.0+90207+bf8fadcb

ruby-default-gems

3.1.4-143.module+el9.3.0+90207+bf8fadcb

ruby-devel

3.1.4-143.module+el9.3.0+90207+bf8fadcb

ruby-doc

3.1.4-143.module+el9.3.0+90207+bf8fadcb

ruby-libs

3.1.4-143.module+el9.3.0+90207+bf8fadcb

rubygem-bigdecimal

3.1.1-143.module+el9.3.0+90207+bf8fadcb

rubygem-bundler

2.3.26-143.module+el9.3.0+90207+bf8fadcb

rubygem-io-console

0.5.11-143.module+el9.3.0+90207+bf8fadcb

rubygem-irb

1.4.1-143.module+el9.3.0+90207+bf8fadcb

rubygem-json

2.6.1-143.module+el9.3.0+90207+bf8fadcb

rubygem-minitest

5.15.0-143.module+el9.3.0+90207+bf8fadcb

rubygem-mysql2

0.5.4-1.module+el9.1.0+20815+286161bd

rubygem-mysql2-doc

0.5.4-1.module+el9.1.0+20815+286161bd

rubygem-pg

1.3.5-1.module+el9.1.0+20815+286161bd

rubygem-pg-doc

1.3.5-1.module+el9.1.0+20815+286161bd

rubygem-power_assert

2.0.1-143.module+el9.3.0+90207+bf8fadcb

rubygem-psych

4.0.4-143.module+el9.3.0+90207+bf8fadcb

rubygem-rake

13.0.6-143.module+el9.3.0+90207+bf8fadcb

rubygem-rbs

2.7.0-143.module+el9.3.0+90207+bf8fadcb

rubygem-rdoc

6.4.0-143.module+el9.3.0+90207+bf8fadcb

rubygem-rexml

3.2.5-143.module+el9.3.0+90207+bf8fadcb

rubygem-rss

0.2.9-143.module+el9.3.0+90207+bf8fadcb

rubygem-test-unit

3.5.3-143.module+el9.3.0+90207+bf8fadcb

rubygem-typeprof

0.21.3-143.module+el9.3.0+90207+bf8fadcb

rubygems

3.3.26-143.module+el9.3.0+90207+bf8fadcb

rubygems-devel

3.3.26-143.module+el9.3.0+90207+bf8fadcb

Oracle Linux x86_64

Module ruby:3.1 is enabled

ruby

3.1.4-143.module+el9.3.0+90207+bf8fadcb

ruby-bundled-gems

3.1.4-143.module+el9.3.0+90207+bf8fadcb

ruby-default-gems

3.1.4-143.module+el9.3.0+90207+bf8fadcb

ruby-devel

3.1.4-143.module+el9.3.0+90207+bf8fadcb

ruby-doc

3.1.4-143.module+el9.3.0+90207+bf8fadcb

ruby-libs

3.1.4-143.module+el9.3.0+90207+bf8fadcb

rubygem-bigdecimal

3.1.1-143.module+el9.3.0+90207+bf8fadcb

rubygem-bundler

2.3.26-143.module+el9.3.0+90207+bf8fadcb

rubygem-io-console

0.5.11-143.module+el9.3.0+90207+bf8fadcb

rubygem-irb

1.4.1-143.module+el9.3.0+90207+bf8fadcb

rubygem-json

2.6.1-143.module+el9.3.0+90207+bf8fadcb

rubygem-minitest

5.15.0-143.module+el9.3.0+90207+bf8fadcb

rubygem-mysql2

0.5.4-1.module+el9.1.0+20815+286161bd

rubygem-mysql2-doc

0.5.4-1.module+el9.1.0+20815+286161bd

rubygem-pg

1.3.5-1.module+el9.1.0+20815+286161bd

rubygem-pg-doc

1.3.5-1.module+el9.1.0+20815+286161bd

rubygem-power_assert

2.0.1-143.module+el9.3.0+90207+bf8fadcb

rubygem-psych

4.0.4-143.module+el9.3.0+90207+bf8fadcb

rubygem-rake

13.0.6-143.module+el9.3.0+90207+bf8fadcb

rubygem-rbs

2.7.0-143.module+el9.3.0+90207+bf8fadcb

rubygem-rdoc

6.4.0-143.module+el9.3.0+90207+bf8fadcb

rubygem-rexml

3.2.5-143.module+el9.3.0+90207+bf8fadcb

rubygem-rss

0.2.9-143.module+el9.3.0+90207+bf8fadcb

rubygem-test-unit

3.5.3-143.module+el9.3.0+90207+bf8fadcb

rubygem-typeprof

0.21.3-143.module+el9.3.0+90207+bf8fadcb

rubygems

3.3.26-143.module+el9.3.0+90207+bf8fadcb

rubygems-devel

3.3.26-143.module+el9.3.0+90207+bf8fadcb

Связанные CVE

Ссылки на источники

Связанные уязвимости

ELSA-2024-1431

oracle-oval

больше 1 года назад

ELSA-2024-1431: ruby:3.1 security, bug fix, and enhancement update (MODERATE)

ELSA-2023-3821

oracle-oval

почти 2 года назад

ELSA-2023-3821: ruby:2.7 security, bug fix, and enhancement update (MODERATE)

SUSE-SU-2023:4176-1

suse-cvrf

больше 1 года назад

Security update for ruby2.5

ELSA-2023-7025

oracle-oval

больше 1 года назад

ELSA-2023-7025: ruby:2.5 security update (MODERATE)

ELSA-2024-3838

oracle-oval

около 1 года назад

ELSA-2024-3838: ruby security update (MODERATE)