ELSA-2008-0897

ELSA-2008-0897 - ruby security update

Type:SECURITY
Impact:MODERATE
Release Date:2008-10-21

Description



[1.8.5-5.el5_2.5]
- Build with -fno-strict-aliasing.

[1.8.5-5.el5_2.4]
- security fixes. (#461590)
- CVE-2008-3655: multiple insufficient safe mode restrictions.
- CVE-2008-3656: WEBrick DoS vulnerability (CPU consumption).
- CVE-2008-3657: missing taintness checks in dl module.
- CVE-2008-3905: use of predictable source port and transaction id in DNS
requests done by resolv.rb module.
- CVE-2008-3443: Memory allocation failure in Ruby regex engine
(remotely exploitable DoS).
- CVE-2008-3790: DoS vulnerability in the REXML module.


Related CVEs


CVE-2008-3656
CVE-2008-3905
CVE-2008-3443
CVE-2008-3655
CVE-2008-3657
CVE-2008-1145
CVE-2008-3790

Updated Packages


Release/ArchitectureFilenamesha256Superseded By AdvisoryChannel Label
Oracle Linux 4 (i386) ruby-1.8.1-7.0.1.el4_7.1.src.rpm348490875936b9b963cb73ae1be3007a3b984e999e023ad0a885dee7294b1d91ELSA-2012-0070el4_i386_latest
ruby-1.8.1-7.0.1.el4_7.1.src.rpm348490875936b9b963cb73ae1be3007a3b984e999e023ad0a885dee7294b1d91ELSA-2012-0070el4_u7_i386_patch
irb-1.8.1-7.0.1.el4_7.1.i386.rpmebd2812d9fb5814d4d558c0e08218785675df903e880051504c9d969999655eaELSA-2012-0070el4_i386_latest
irb-1.8.1-7.0.1.el4_7.1.i386.rpmebd2812d9fb5814d4d558c0e08218785675df903e880051504c9d969999655eaELSA-2012-0070el4_u7_i386_patch
ruby-1.8.1-7.0.1.el4_7.1.i386.rpm82bddb89b9c1d908cabd90168160c6046c326b376f57fa7431771be410e1ea1cELSA-2012-0070el4_i386_latest
ruby-1.8.1-7.0.1.el4_7.1.i386.rpm82bddb89b9c1d908cabd90168160c6046c326b376f57fa7431771be410e1ea1cELSA-2012-0070el4_u7_i386_patch
ruby-devel-1.8.1-7.0.1.el4_7.1.i386.rpm7460b0d3520373a8d30cba42ad5ebcf9b9c3c3f0725b77a9578c738cf8fb542bELSA-2012-0070el4_i386_latest
ruby-devel-1.8.1-7.0.1.el4_7.1.i386.rpm7460b0d3520373a8d30cba42ad5ebcf9b9c3c3f0725b77a9578c738cf8fb542bELSA-2012-0070el4_u7_i386_patch
ruby-docs-1.8.1-7.0.1.el4_7.1.i386.rpmcf5eee8747683636c3204b35275c5aca8627f10737979c5974821a6edea72560ELSA-2012-0070el4_i386_latest
ruby-docs-1.8.1-7.0.1.el4_7.1.i386.rpmcf5eee8747683636c3204b35275c5aca8627f10737979c5974821a6edea72560ELSA-2012-0070el4_u7_i386_patch
ruby-libs-1.8.1-7.0.1.el4_7.1.i386.rpme5fe9aeccc62b6596fc722c87f7e774cc916ba987060ef0296357fc5e618c24fELSA-2012-0070el4_i386_latest
ruby-libs-1.8.1-7.0.1.el4_7.1.i386.rpme5fe9aeccc62b6596fc722c87f7e774cc916ba987060ef0296357fc5e618c24fELSA-2012-0070el4_u7_i386_patch
ruby-mode-1.8.1-7.0.1.el4_7.1.i386.rpm913875939c10984f520712c7022ea2dfcdc7e5b9ba8db60effb81d7061c51345ELSA-2012-0070el4_i386_latest
ruby-mode-1.8.1-7.0.1.el4_7.1.i386.rpm913875939c10984f520712c7022ea2dfcdc7e5b9ba8db60effb81d7061c51345ELSA-2012-0070el4_u7_i386_patch
ruby-tcltk-1.8.1-7.0.1.el4_7.1.i386.rpmdf559cbc7c9d09bbe3de479757be35d2bd017a42f046f38a011aa438389d0fd5ELSA-2012-0070el4_i386_latest
ruby-tcltk-1.8.1-7.0.1.el4_7.1.i386.rpmdf559cbc7c9d09bbe3de479757be35d2bd017a42f046f38a011aa438389d0fd5ELSA-2012-0070el4_u7_i386_patch
Oracle Linux 4 (ia64) ruby-1.8.1-7.0.1.el4_7.1.src.rpm348490875936b9b963cb73ae1be3007a3b984e999e023ad0a885dee7294b1d91ELSA-2012-0070el4_ia64_latest
ruby-1.8.1-7.0.1.el4_7.1.src.rpm348490875936b9b963cb73ae1be3007a3b984e999e023ad0a885dee7294b1d91ELSA-2012-0070el4_u7_ia64_patch
irb-1.8.1-7.0.1.el4_7.1.ia64.rpm3eaf428603bbea9a066448ab53d11f0e19c97011900a457327cd6ccdbfcecf0fELSA-2012-0070el4_ia64_latest
irb-1.8.1-7.0.1.el4_7.1.ia64.rpm3eaf428603bbea9a066448ab53d11f0e19c97011900a457327cd6ccdbfcecf0fELSA-2012-0070el4_u7_ia64_patch
ruby-1.8.1-7.0.1.el4_7.1.ia64.rpmeda325b8a76cac3d07c002003a4efcdf821bbb1468fbf1bd36f4d4dd802991e6ELSA-2012-0070el4_ia64_latest
ruby-1.8.1-7.0.1.el4_7.1.ia64.rpmeda325b8a76cac3d07c002003a4efcdf821bbb1468fbf1bd36f4d4dd802991e6ELSA-2012-0070el4_u7_ia64_patch
ruby-devel-1.8.1-7.0.1.el4_7.1.ia64.rpm09b93c34df6fc32e2ec0e8e6aed9cab631083e1f2c3353b4f4756e6c2d51e969ELSA-2012-0070el4_ia64_latest
ruby-devel-1.8.1-7.0.1.el4_7.1.ia64.rpm09b93c34df6fc32e2ec0e8e6aed9cab631083e1f2c3353b4f4756e6c2d51e969ELSA-2012-0070el4_u7_ia64_patch
ruby-docs-1.8.1-7.0.1.el4_7.1.ia64.rpm2a25cb2cfcf8635b8b6b5d7a93c1c5a5481a28015bf9d36b67f2acf8ddf1c4a4ELSA-2012-0070el4_ia64_latest
ruby-docs-1.8.1-7.0.1.el4_7.1.ia64.rpm2a25cb2cfcf8635b8b6b5d7a93c1c5a5481a28015bf9d36b67f2acf8ddf1c4a4ELSA-2012-0070el4_u7_ia64_patch
ruby-libs-1.8.1-7.0.1.el4_7.1.i386.rpme5fe9aeccc62b6596fc722c87f7e774cc916ba987060ef0296357fc5e618c24fELSA-2012-0070el4_ia64_latest
ruby-libs-1.8.1-7.0.1.el4_7.1.i386.rpme5fe9aeccc62b6596fc722c87f7e774cc916ba987060ef0296357fc5e618c24fELSA-2012-0070el4_u7_ia64_patch
ruby-libs-1.8.1-7.0.1.el4_7.1.ia64.rpma268076caa577a98f494e485b07f9810b1c592bc246409445708c4f8c5474ac0ELSA-2012-0070el4_ia64_latest
ruby-libs-1.8.1-7.0.1.el4_7.1.ia64.rpma268076caa577a98f494e485b07f9810b1c592bc246409445708c4f8c5474ac0ELSA-2012-0070el4_u7_ia64_patch
ruby-mode-1.8.1-7.0.1.el4_7.1.ia64.rpmc8a3193aae447c2b44fbd05d0e6a9697a1f63ee3f557f75d4f5b54c7736871faELSA-2012-0070el4_ia64_latest
ruby-mode-1.8.1-7.0.1.el4_7.1.ia64.rpmc8a3193aae447c2b44fbd05d0e6a9697a1f63ee3f557f75d4f5b54c7736871faELSA-2012-0070el4_u7_ia64_patch
ruby-tcltk-1.8.1-7.0.1.el4_7.1.ia64.rpm9c56244d98505fefc604326cb556884519485c128801c96802d2e56a99b58991ELSA-2012-0070el4_ia64_latest
ruby-tcltk-1.8.1-7.0.1.el4_7.1.ia64.rpm9c56244d98505fefc604326cb556884519485c128801c96802d2e56a99b58991ELSA-2012-0070el4_u7_ia64_patch
Oracle Linux 4 (x86_64) ruby-1.8.1-7.0.1.el4_7.1.src.rpm348490875936b9b963cb73ae1be3007a3b984e999e023ad0a885dee7294b1d91ELSA-2012-0070el4_u7_x86_64_patch
ruby-1.8.1-7.0.1.el4_7.1.src.rpm348490875936b9b963cb73ae1be3007a3b984e999e023ad0a885dee7294b1d91ELSA-2012-0070el4_x86_64_latest
irb-1.8.1-7.0.1.el4_7.1.x86_64.rpm9bb39cad7f02fd6b83b1135442ebe76f033ad52a99220b14495aea2c64efd9ddELSA-2012-0070el4_u7_x86_64_patch
irb-1.8.1-7.0.1.el4_7.1.x86_64.rpm9bb39cad7f02fd6b83b1135442ebe76f033ad52a99220b14495aea2c64efd9ddELSA-2012-0070el4_x86_64_latest
ruby-1.8.1-7.0.1.el4_7.1.x86_64.rpmd78db0afe51963a97fc52a3cdce92fc2fc14eee713235e4aedc4d26f6efe5f03ELSA-2012-0070el4_u7_x86_64_patch
ruby-1.8.1-7.0.1.el4_7.1.x86_64.rpmd78db0afe51963a97fc52a3cdce92fc2fc14eee713235e4aedc4d26f6efe5f03ELSA-2012-0070el4_x86_64_latest
ruby-devel-1.8.1-7.0.1.el4_7.1.x86_64.rpm7bada0bd7d26295763e91b36158739f0cd50a13f3f2d636b1b39d18b76f271a0ELSA-2012-0070el4_u7_x86_64_patch
ruby-devel-1.8.1-7.0.1.el4_7.1.x86_64.rpm7bada0bd7d26295763e91b36158739f0cd50a13f3f2d636b1b39d18b76f271a0ELSA-2012-0070el4_x86_64_latest
ruby-docs-1.8.1-7.0.1.el4_7.1.x86_64.rpm8c653f4ba67bb97dadbf1b204584b42862a0cdc8252f6059debb6ae89e499818ELSA-2012-0070el4_u7_x86_64_patch
ruby-docs-1.8.1-7.0.1.el4_7.1.x86_64.rpm8c653f4ba67bb97dadbf1b204584b42862a0cdc8252f6059debb6ae89e499818ELSA-2012-0070el4_x86_64_latest
ruby-libs-1.8.1-7.0.1.el4_7.1.i386.rpme5fe9aeccc62b6596fc722c87f7e774cc916ba987060ef0296357fc5e618c24fELSA-2012-0070el4_u7_x86_64_patch
ruby-libs-1.8.1-7.0.1.el4_7.1.i386.rpme5fe9aeccc62b6596fc722c87f7e774cc916ba987060ef0296357fc5e618c24fELSA-2012-0070el4_x86_64_latest
ruby-libs-1.8.1-7.0.1.el4_7.1.x86_64.rpm4891b7a2c6a3346f8295fd77a2968cd81babc369514268d3c9db5edbdc058d3bELSA-2012-0070el4_u7_x86_64_patch
ruby-libs-1.8.1-7.0.1.el4_7.1.x86_64.rpm4891b7a2c6a3346f8295fd77a2968cd81babc369514268d3c9db5edbdc058d3bELSA-2012-0070el4_x86_64_latest
ruby-mode-1.8.1-7.0.1.el4_7.1.x86_64.rpmce4dfb673986979b3929b600f09aa2592581d94f4106e65b67a72defeba25e54ELSA-2012-0070el4_u7_x86_64_patch
ruby-mode-1.8.1-7.0.1.el4_7.1.x86_64.rpmce4dfb673986979b3929b600f09aa2592581d94f4106e65b67a72defeba25e54ELSA-2012-0070el4_x86_64_latest
ruby-tcltk-1.8.1-7.0.1.el4_7.1.x86_64.rpm1678975801e5c738a62691858824a2fbea7019c2469f96f95d7086a3fe67bf58ELSA-2012-0070el4_u7_x86_64_patch
ruby-tcltk-1.8.1-7.0.1.el4_7.1.x86_64.rpm1678975801e5c738a62691858824a2fbea7019c2469f96f95d7086a3fe67bf58ELSA-2012-0070el4_x86_64_latest
Oracle Linux 5 (i386) ruby-1.8.5-5.el5_2.5.src.rpm8ebb026b3223cba708b6689d9f7e43f1af001d7a55a1d026b83609dda4b10e9aELSA-2013-1090el5_u2_i386_patch
ruby-1.8.5-5.el5_2.5.i386.rpmeca3208cd749df2bf9d2175d6a14dd42a88addbb36ad2fa68e4e3587e29e929cELSA-2013-1090el5_u2_i386_patch
ruby-devel-1.8.5-5.el5_2.5.i386.rpmc6d7ca440a6195832c227706bfef89cb9a564ce3589483cf4186cd6dcf86b046ELSA-2013-1090el5_u2_i386_patch
ruby-docs-1.8.5-5.el5_2.5.i386.rpm8755fb9e655e869d94ae71a82b082c7b170de9e7b1b435d5453b674e152e29e4ELSA-2013-1090el5_u2_i386_patch
ruby-irb-1.8.5-5.el5_2.5.i386.rpm84a542deec631af35369d776579030e1a9a48050a240d636ddb301a2a41e1d51ELSA-2013-1090el5_u2_i386_patch
ruby-libs-1.8.5-5.el5_2.5.i386.rpm57210f988e12c930aeb36a898f1eec589e335df8d7663ed1c28d9f409069b931ELSA-2013-1090el5_u2_i386_patch
ruby-mode-1.8.5-5.el5_2.5.i386.rpm75fbe51946cb39d5f0bcbcb7fe55cbd340b3035f8307817819d7c85a95999991ELSA-2013-1090el5_u2_i386_patch
ruby-rdoc-1.8.5-5.el5_2.5.i386.rpm284c4f4e308c7319252dd46f4773424581f7f7fed142d2e132041714c0f1f559ELSA-2013-1090el5_u2_i386_patch
ruby-ri-1.8.5-5.el5_2.5.i386.rpmc92681e8b82f53a6f00e70ea001e6e29fafcea54ae47ff93196f8adf591aa7d2ELSA-2013-1090el5_u2_i386_patch
ruby-tcltk-1.8.5-5.el5_2.5.i386.rpm946bc915b5bfc3ef7d83c531658145b52de8662590a7ca71ad92826b9e0b7a7bELSA-2013-1090el5_u2_i386_patch
Oracle Linux 5 (x86_64) ruby-1.8.5-5.el5_2.5.src.rpm8ebb026b3223cba708b6689d9f7e43f1af001d7a55a1d026b83609dda4b10e9aELSA-2013-1090el5_u2_x86_64_patch
ruby-1.8.5-5.el5_2.5.x86_64.rpme027c850e3e8f548e11217e8252665c0634d6690f7680012c204187bb5d7c295ELSA-2013-1090el5_u2_x86_64_patch
ruby-devel-1.8.5-5.el5_2.5.i386.rpmc6d7ca440a6195832c227706bfef89cb9a564ce3589483cf4186cd6dcf86b046ELSA-2013-1090el5_u2_x86_64_patch
ruby-devel-1.8.5-5.el5_2.5.x86_64.rpme28a541afd15ae7c228a9f9e91701f23454201cd03bcdaf7705b9f083f91aee0ELSA-2013-1090el5_u2_x86_64_patch
ruby-docs-1.8.5-5.el5_2.5.x86_64.rpmc4fc990a9a5ac3a6eb1c89ceb508beee74a379ce01ffc20ad34f43ba4b474c3cELSA-2013-1090el5_u2_x86_64_patch
ruby-irb-1.8.5-5.el5_2.5.x86_64.rpm6bb03f87fc775bf390012962187db256bd1985f80224e79e37d260aae5a336d6ELSA-2013-1090el5_u2_x86_64_patch
ruby-libs-1.8.5-5.el5_2.5.i386.rpm57210f988e12c930aeb36a898f1eec589e335df8d7663ed1c28d9f409069b931ELSA-2013-1090el5_u2_x86_64_patch
ruby-libs-1.8.5-5.el5_2.5.x86_64.rpm19893ff9cccef5a27b13f785a05084c54cb1788c6efb2ae5ccce748221a0d45dELSA-2013-1090el5_u2_x86_64_patch
ruby-mode-1.8.5-5.el5_2.5.x86_64.rpmf410ab66dcd0427aafe8b916740f5094c4d95406e76c3048556da11ab42462d3ELSA-2013-1090el5_u2_x86_64_patch
ruby-rdoc-1.8.5-5.el5_2.5.x86_64.rpmcd8616084b1617d20fa4dda66261ae847c4a475c3c732adec174d65013c541dfELSA-2013-1090el5_u2_x86_64_patch
ruby-ri-1.8.5-5.el5_2.5.x86_64.rpmadbf99a960c2ac3c2f1be3d6f563611c724251f1e030067e5f320047304d022cELSA-2013-1090el5_u2_x86_64_patch
ruby-tcltk-1.8.5-5.el5_2.5.x86_64.rpmb10d89682bf252c2547b885bc5f29a9deef780adf9790b8474d61f4546ce2051ELSA-2013-1090el5_u2_x86_64_patch



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete