Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2024:3668

Опубликовано: 14 июн. 2024
Источник: rocky
Оценка: Moderate

Описание

Moderate: ruby:3.1 security, bug fix, and enhancement update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.

The following packages have been upgraded to a later upstream version: ruby (3.1). (Rocky Linux-35449)

Security Fix(es):

  • ruby: Buffer overread vulnerability in StringIO (CVE-2024-27280)

  • ruby: RCE vulnerability with .rdoc_options in RDoc (CVE-2024-27281)

  • ruby: Arbitrary memory address read vulnerability with Regex search (CVE-2024-27282)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 9

НаименованиеАрхитектураРелизRPM
rubygem-mysql2x86_641.module+el9.6.0+31865+0893c253rubygem-mysql2-0.5.4-1.module+el9.6.0+31865+0893c253.x86_64.rpm
rubygem-mysql2-docnoarch1.module+el9.6.0+31865+0893c253rubygem-mysql2-doc-0.5.4-1.module+el9.6.0+31865+0893c253.noarch.rpm
rubygem-mysql2-docnoarch1.module+el9.6.0+31865+0893c253rubygem-mysql2-doc-0.5.4-1.module+el9.6.0+31865+0893c253.noarch.rpm
rubygem-mysql2-docnoarch1.module+el9.6.0+31865+0893c253rubygem-mysql2-doc-0.5.4-1.module+el9.6.0+31865+0893c253.noarch.rpm
rubygem-mysql2-docnoarch1.module+el9.6.0+31865+0893c253rubygem-mysql2-doc-0.5.4-1.module+el9.6.0+31865+0893c253.noarch.rpm
rubygem-pgx86_641.module+el9.6.0+31865+0893c253rubygem-pg-1.3.5-1.module+el9.6.0+31865+0893c253.x86_64.rpm
rubygem-pg-docnoarch1.module+el9.6.0+31865+0893c253rubygem-pg-doc-1.3.5-1.module+el9.6.0+31865+0893c253.noarch.rpm
rubygem-pg-docnoarch1.module+el9.6.0+31865+0893c253rubygem-pg-doc-1.3.5-1.module+el9.6.0+31865+0893c253.noarch.rpm
rubygem-pg-docnoarch1.module+el9.6.0+31865+0893c253rubygem-pg-doc-1.3.5-1.module+el9.6.0+31865+0893c253.noarch.rpm
rubygem-pg-docnoarch1.module+el9.6.0+31865+0893c253rubygem-pg-doc-1.3.5-1.module+el9.6.0+31865+0893c253.noarch.rpm

Показывать по

Связанные CVE

CVE-2024-27280
CVE-2024-27281
CVE-2024-27282

Ссылки на источники

Исправления

Связанные уязвимости

rocky логотип

RLSA-2024:3671

rocky
больше 1 года назад

Moderate: ruby:3.3 security, bug fix, and enhancement update

rocky логотип

RLSA-2024:3670

rocky
больше 1 года назад

Moderate: ruby:3.3 security, bug fix, and enhancement update

rocky логотип

RLSA-2024:3546

rocky
больше 1 года назад

Moderate: ruby:3.1 security, bug fix, and enhancement update

oracle-oval логотип

ELSA-2024-3671

oracle-oval
больше 1 года назад

ELSA-2024-3671: ruby:3.3 security, bug fix, and enhancement update (MODERATE)

oracle-oval логотип

ELSA-2024-3670

oracle-oval
больше 1 года назад

ELSA-2024-3670: ruby:3.3 security, bug fix, and enhancement update (MODERATE)