Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2021:2584

Опубликовано: 29 июн. 2021
Источник: rocky
Оценка: Moderate

Описание

Moderate: ruby:2.7 security, bug fix, and enhancement update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.

The following packages have been upgraded to a later upstream version: ruby (2.7.3). (BZ#1951999)

Security Fix(es):

  • ruby: Potential HTTP request smuggling in WEBrick (CVE-2020-25613)

  • ruby: XML round-trip vulnerability in REXML (CVE-2021-28965)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

  • Resolv::DNS: ruby:2.7/ruby: timeouts if multiple IPv6 name servers are given and address contains leading zero [Rocky Linux-8] (BZ#1952000)

Затронутые продукты

  • Rocky Linux 8

НаименованиеАрхитектураРелизRPM
rubygem-abrtnoarch1.module+el8.5.0+668+665814farubygem-abrt-0.4.0-1.module+el8.5.0+668+665814fa.noarch.rpm
rubygem-abrt-docnoarch1.module+el8.5.0+668+665814farubygem-abrt-doc-0.4.0-1.module+el8.5.0+668+665814fa.noarch.rpm
rubygem-bsonx86_641.module+el8.4.0+594+11b6673arubygem-bson-4.8.1-1.module+el8.4.0+594+11b6673a.x86_64.rpm
rubygem-bson-docnoarch1.module+el8.4.0+594+11b6673arubygem-bson-doc-4.8.1-1.module+el8.4.0+594+11b6673a.noarch.rpm
rubygem-mongonoarch1.module+el8.4.0+594+11b6673arubygem-mongo-2.11.3-1.module+el8.4.0+594+11b6673a.noarch.rpm
rubygem-mongo-docnoarch1.module+el8.4.0+594+11b6673arubygem-mongo-doc-2.11.3-1.module+el8.4.0+594+11b6673a.noarch.rpm
rubygem-mysql2x86_641.module+el8.5.0+668+665814farubygem-mysql2-0.5.3-1.module+el8.5.0+668+665814fa.x86_64.rpm
rubygem-mysql2-docnoarch1.module+el8.5.0+668+665814farubygem-mysql2-doc-0.5.3-1.module+el8.5.0+668+665814fa.noarch.rpm
rubygem-pgx86_641.module+el8.5.0+668+665814farubygem-pg-1.2.3-1.module+el8.5.0+668+665814fa.x86_64.rpm
rubygem-pg-docnoarch1.module+el8.5.0+668+665814farubygem-pg-doc-1.2.3-1.module+el8.5.0+668+665814fa.noarch.rpm

Показывать по

Связанные CVE

CVE-2020-25613
CVE-2021-28965

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2021-2584

oracle-oval
около 4 лет назад

ELSA-2021-2584: ruby:2.7 security, bug fix, and enhancement update (MODERATE)

rocky логотип

RLSA-2021:2587

rocky
около 4 лет назад

Moderate: ruby:2.5 security, bug fix, and enhancement update

oracle-oval логотип

ELSA-2021-2587

oracle-oval
около 4 лет назад

ELSA-2021-2587: ruby:2.5 security, bug fix, and enhancement update (MODERATE)

rocky логотип

RLSA-2021:2588

rocky
около 4 лет назад

Moderate: ruby:2.6 security, bug fix, and enhancement update

oracle-oval логотип

ELSA-2021-2588

oracle-oval
около 4 лет назад

ELSA-2021-2588: ruby:2.6 security, bug fix, and enhancement update (MODERATE)