Описание
ELSA-2024-3668: ruby:3.1 security, bug fix, and enhancement update (MODERATE)
ruby [3.1.5-144]
- Upgrade to Ruby 3.1.5. Resolves: RHEL-33978
- Fix buffer overread vulnerability in StringIO. Resolves: RHEL-34129
- Fix RCE vulnerability with .rdoc_options in RDoc. Resolves: RHEL-34121
- Fix arbitrary memory address read vulnerability with Regex search. Resolves: RHEL-33871
[3.1.4-143]
- Upgrade to Ruby 3.1.4. Resolves: RHEL-5586
- Fix HTTP response splitting in CGI. Resolves: RHEL-5591
- Fix ReDos vulnerability in URI. Resolves: RHEL-28919 Resolves: RHEL-5612
- Fix ReDos vulnerability in Time. Resolves: RHEL-28920
- Make RDoc soft dependency in IRB. Resolves: RHEL-5613
[3.1.2-142]
- Bypass git submodule test failure on Git >= 2.38.1.
- Fix tests with Europe/Amsterdam pre-1970 time on tzdata version 2022b.
- Fix for tzdata-2022g.
- Fix OpenSSL.fips_mode and OpenSSL::PKey.read in OpenSSL 3 FIPS. Resolves: RHEL-5590
- ssl: use ffdhe2048 from RFC 7919 as the default DH group parameters Related: RHEL-5590
- Disable fiddle tests that use FFI closures. Related: RHEL-5590
[3.1.2-141]
- Upgrade to Ruby 3.1.2 by merging Fedora Rawhide branch (commit: b7b5473). Resolves: rhbz#2063773
rubygem-mysql2 [0.5.4-1]
- New upstream release 0.5.4 by merging Fedora rawhide branch (commit: e21b5b9) Resolves: rhbz#2063773
[0.5.3-1]
- New upstream release 0.5.3 by merging Fedora master branch (commit: 674d475) Resolves: rhbz#1817135
rubygem-pg
- Thu May 26 2022 Jarek Prokop - 1.3.5-1
- Update to pg 1.3.5 Related: rhbz#2063773
[1.2.3-1]
- Update to pg 1.2.3 by merging Fedora master branch (commit: 5db4d26) Resolves: rhbz#1817135
Обновленные пакеты
Oracle Linux 9
Oracle Linux aarch64
Module ruby:3.1 is enabled
ruby
3.1.5-144.module+el9.4.0+90348+c2ef46bf
ruby-bundled-gems
3.1.5-144.module+el9.4.0+90348+c2ef46bf
ruby-default-gems
3.1.5-144.module+el9.4.0+90348+c2ef46bf
ruby-devel
3.1.5-144.module+el9.4.0+90348+c2ef46bf
ruby-doc
3.1.5-144.module+el9.4.0+90348+c2ef46bf
ruby-libs
3.1.5-144.module+el9.4.0+90348+c2ef46bf
rubygem-bigdecimal
3.1.1-144.module+el9.4.0+90348+c2ef46bf
rubygem-bundler
2.3.27-144.module+el9.4.0+90348+c2ef46bf
rubygem-io-console
0.5.11-144.module+el9.4.0+90348+c2ef46bf
rubygem-irb
1.4.1-144.module+el9.4.0+90348+c2ef46bf
rubygem-json
2.6.1-144.module+el9.4.0+90348+c2ef46bf
rubygem-minitest
5.15.0-144.module+el9.4.0+90348+c2ef46bf
rubygem-mysql2
0.5.4-1.module+el9.1.0+20815+286161bd
rubygem-mysql2-doc
0.5.4-1.module+el9.1.0+20815+286161bd
rubygem-pg
1.3.5-1.module+el9.1.0+20815+286161bd
rubygem-pg-doc
1.3.5-1.module+el9.1.0+20815+286161bd
rubygem-power_assert
2.0.1-144.module+el9.4.0+90348+c2ef46bf
rubygem-psych
4.0.4-144.module+el9.4.0+90348+c2ef46bf
rubygem-rake
13.0.6-144.module+el9.4.0+90348+c2ef46bf
rubygem-rbs
2.7.0-144.module+el9.4.0+90348+c2ef46bf
rubygem-rdoc
6.4.1.1-144.module+el9.4.0+90348+c2ef46bf
rubygem-rexml
3.2.5-144.module+el9.4.0+90348+c2ef46bf
rubygem-rss
0.2.9-144.module+el9.4.0+90348+c2ef46bf
rubygem-test-unit
3.5.3-144.module+el9.4.0+90348+c2ef46bf
rubygem-typeprof
0.21.3-144.module+el9.4.0+90348+c2ef46bf
rubygems
3.3.27-144.module+el9.4.0+90348+c2ef46bf
rubygems-devel
3.3.27-144.module+el9.4.0+90348+c2ef46bf
Oracle Linux x86_64
Module ruby:3.1 is enabled
ruby
3.1.5-144.module+el9.4.0+90348+c2ef46bf
ruby-bundled-gems
3.1.5-144.module+el9.4.0+90348+c2ef46bf
ruby-default-gems
3.1.5-144.module+el9.4.0+90348+c2ef46bf
ruby-devel
3.1.5-144.module+el9.4.0+90348+c2ef46bf
ruby-doc
3.1.5-144.module+el9.4.0+90348+c2ef46bf
ruby-libs
3.1.5-144.module+el9.4.0+90348+c2ef46bf
rubygem-bigdecimal
3.1.1-144.module+el9.4.0+90348+c2ef46bf
rubygem-bundler
2.3.27-144.module+el9.4.0+90348+c2ef46bf
rubygem-io-console
0.5.11-144.module+el9.4.0+90348+c2ef46bf
rubygem-irb
1.4.1-144.module+el9.4.0+90348+c2ef46bf
rubygem-json
2.6.1-144.module+el9.4.0+90348+c2ef46bf
rubygem-minitest
5.15.0-144.module+el9.4.0+90348+c2ef46bf
rubygem-mysql2
0.5.4-1.module+el9.1.0+20815+286161bd
rubygem-mysql2-doc
0.5.4-1.module+el9.1.0+20815+286161bd
rubygem-pg
1.3.5-1.module+el9.1.0+20815+286161bd
rubygem-pg-doc
1.3.5-1.module+el9.1.0+20815+286161bd
rubygem-power_assert
2.0.1-144.module+el9.4.0+90348+c2ef46bf
rubygem-psych
4.0.4-144.module+el9.4.0+90348+c2ef46bf
rubygem-rake
13.0.6-144.module+el9.4.0+90348+c2ef46bf
rubygem-rbs
2.7.0-144.module+el9.4.0+90348+c2ef46bf
rubygem-rdoc
6.4.1.1-144.module+el9.4.0+90348+c2ef46bf
rubygem-rexml
3.2.5-144.module+el9.4.0+90348+c2ef46bf
rubygem-rss
0.2.9-144.module+el9.4.0+90348+c2ef46bf
rubygem-test-unit
3.5.3-144.module+el9.4.0+90348+c2ef46bf
rubygem-typeprof
0.21.3-144.module+el9.4.0+90348+c2ef46bf
rubygems
3.3.27-144.module+el9.4.0+90348+c2ef46bf
rubygems-devel
3.3.27-144.module+el9.4.0+90348+c2ef46bf
Связанные CVE
Связанные уязвимости
ELSA-2024-3671: ruby:3.3 security, bug fix, and enhancement update (MODERATE)
ELSA-2024-3670: ruby:3.3 security, bug fix, and enhancement update (MODERATE)
ELSA-2024-3546: ruby:3.1 security, bug fix, and enhancement update (MODERATE)