ELSA-2011-0908

ULN >
Oracle Linux Errata repository >
ELSA-2011-0908

ELSA-2011-0908 - ruby security update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2011-06-28

Description

[1.8.1-16.el4]
- Comply with guidelines
- Related: rhbz#709959

[1.8.1-15.el4]
- Address CVE-2011-1005 'Untrusted codes able to modify arbitrary strings'
* ruby-1.8.7-CVE-2011-1005.patch
- Address CVE-2011-0188 'memory corruption in BigDecimal on 64bit platforms'
* ruby-1.8.7-CVE-2011-0188.patch
- Address CVE-CVE-2010-0541 'Ruby WEBrick javascript injection flaw'
* ruby-1.8.7-CVE-2010-0541.patch
- Address CVE-CVE-2009-4492 'ruby WEBrick log escape sequence'
* ruby-1.8.6-CVE-2009-4492.patch
- Resolves: rhbz#709959

Related CVEs

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 4 (i386)	ruby-1.8.1-16.el4.src.rpm	5c37c2dbc361e8a931a919c6b59ff7a4	ELSA-2012-0070
	irb-1.8.1-16.el4.i386.rpm	6d143e3e5fe38965193dfa0262d8e3af	ELSA-2012-0070
	ruby-1.8.1-16.el4.i386.rpm	071d2a334e6d1613b26bcdef7fe9a40c	ELSA-2012-0070
	ruby-devel-1.8.1-16.el4.i386.rpm	7f5fa44c1b294cf096b46d5187ae27d4	ELSA-2012-0070
	ruby-docs-1.8.1-16.el4.i386.rpm	ff3bcdada57b93a3b4cf8c45bfcbfbd6	ELSA-2012-0070
	ruby-libs-1.8.1-16.el4.i386.rpm	67765d846750a553e778a1b979d50887	ELSA-2012-0070
	ruby-mode-1.8.1-16.el4.i386.rpm	23366aef56bbd1288b9fcd7f675dcfce	ELSA-2012-0070
	ruby-tcltk-1.8.1-16.el4.i386.rpm	6fb1e2e8a905f0fd6d1737a8fbcadeba	ELSA-2012-0070

Oracle Linux 4 (ia64)	ruby-1.8.1-16.el4.src.rpm	5c37c2dbc361e8a931a919c6b59ff7a4	ELSA-2012-0070
	irb-1.8.1-16.el4.ia64.rpm	16ddc17f9cd931d3e4b7bf009828493c	ELSA-2012-0070
	ruby-1.8.1-16.el4.ia64.rpm	5c2361bdc2e9e6e685af2b7f421c7e62	ELSA-2012-0070
	ruby-devel-1.8.1-16.el4.ia64.rpm	ba9490cefd8626205557377fb10b1a40	ELSA-2012-0070
	ruby-docs-1.8.1-16.el4.ia64.rpm	2916fc8220147b9b62b4135bb4a0458a	ELSA-2012-0070
	ruby-libs-1.8.1-16.el4.i386.rpm	67765d846750a553e778a1b979d50887	ELSA-2012-0070
	ruby-libs-1.8.1-16.el4.ia64.rpm	3889ada2eb8cf23e5fb603797a6de290	ELSA-2012-0070
	ruby-mode-1.8.1-16.el4.ia64.rpm	207f07721322134268d6745a45e834a9	ELSA-2012-0070
	ruby-tcltk-1.8.1-16.el4.ia64.rpm	f9d8618c098e3e0327e5d7fa4880f94d	ELSA-2012-0070

Oracle Linux 4 (x86_64)	ruby-1.8.1-16.el4.src.rpm	5c37c2dbc361e8a931a919c6b59ff7a4	ELSA-2012-0070
	irb-1.8.1-16.el4.x86_64.rpm	00c33c54c27d737e59dee632e54c7d20	ELSA-2012-0070
	ruby-1.8.1-16.el4.x86_64.rpm	34e863002841b9740e7007b9d0da73fc	ELSA-2012-0070
	ruby-devel-1.8.1-16.el4.x86_64.rpm	4756bf25d3a78200f8f52dbf2696b80e	ELSA-2012-0070
	ruby-docs-1.8.1-16.el4.x86_64.rpm	811780243b3c771d627a24e1582e012c	ELSA-2012-0070
	ruby-libs-1.8.1-16.el4.i386.rpm	67765d846750a553e778a1b979d50887	ELSA-2012-0070
	ruby-libs-1.8.1-16.el4.x86_64.rpm	2bd4db53acc8e37466f0ef1740629938	ELSA-2012-0070
	ruby-mode-1.8.1-16.el4.x86_64.rpm	8ff736f67db7a286f9dbda8a0137d2f5	ELSA-2012-0070
	ruby-tcltk-1.8.1-16.el4.x86_64.rpm	fb3bf60f8ba50c42b632984192d9e528	ELSA-2012-0070

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691