Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:8131

Опубликовано: 03 окт. 2025
Источник: rocky
Оценка: Moderate

Описание

Moderate: ruby security update

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.

Security Fix(es):

  • net-imap: Net::IMAP vulnerable to possible DoS by memory exhaustion (CVE-2025-25186)

  • CGI: Denial of Service in CGI::Cookie.parse (CVE-2025-27219)

  • uri: userinfo leakage in URI#join, URI#merge and URI#+ (CVE-2025-27221)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
rubyx86_6410.el10_0ruby-3.3.8-10.el10_0.x86_64.rpm
ruby-bundled-gemsx86_6410.el10_0ruby-bundled-gems-3.3.8-10.el10_0.x86_64.rpm
ruby-default-gemsnoarch10.el10_0ruby-default-gems-3.3.8-10.el10_0.noarch.rpm
ruby-default-gemsnoarch10.el10_0ruby-default-gems-3.3.8-10.el10_0.noarch.rpm
ruby-default-gemsnoarch10.el10_0ruby-default-gems-3.3.8-10.el10_0.noarch.rpm
ruby-default-gemsnoarch10.el10_0ruby-default-gems-3.3.8-10.el10_0.noarch.rpm
ruby-develx86_6410.el10_0ruby-devel-3.3.8-10.el10_0.x86_64.rpm
rubygem-bigdecimalx86_6410.el10_0rubygem-bigdecimal-3.1.5-10.el10_0.x86_64.rpm
rubygem-bundlernoarch10.el10_0rubygem-bundler-2.5.22-10.el10_0.noarch.rpm
rubygem-bundlernoarch10.el10_0rubygem-bundler-2.5.22-10.el10_0.noarch.rpm

Показывать по

Связанные CVE

CVE-2025-25186
CVE-2025-27219
CVE-2025-27221

Ссылки на источники

Исправления

Связанные уязвимости

rocky логотип

RLSA-2025:4493

rocky
5 месяцев назад

Moderate: ruby:3.3 security update

rocky логотип

RLSA-2025:10217

rocky
5 месяцев назад

Moderate: ruby:3.3 security update

oracle-oval логотип

ELSA-2025-8131

oracle-oval
6 месяцев назад

ELSA-2025-8131: ruby security update (MODERATE)

oracle-oval логотип

ELSA-2025-4493

oracle-oval
8 месяцев назад

ELSA-2025-4493: ruby:3.3 security update (MODERATE)

oracle-oval логотип

ELSA-2025-10217

oracle-oval
6 месяцев назад

ELSA-2025-10217: ruby:3.3 security update (MODERATE)