Stay Connected:

ELSA-2013-0129

ELSA-2013-0129 - ruby security and bug fix update

Type:SECURITY
Severity:MODERATE
Release Date:2013-01-11

Description


[1.8.5-27]
- unintentional file creation caused by inserting an illegal NUL character
* ruby-1.8.6-CVE-2012-4522-io.c-pipe_open-command-name-should-not-contain-null-.patch
- Related: rhbz#867750

[1.8.5-26]
- escaping vulnerability about Exception#to_s / NameError#to_s
* ruby-1.8.7-p371-CVE-2012-4481.patch
- Resolves: rhbz#867750
- unintentional file creation caused by inserting an illegal NUL character
* ruby-1.8.6-CVE-2012-4522-io.c-rb_open_file-should-check-NUL-in-path.patch
- Resolves: rhbz#867750

[1.8.5-25]
- Resolve buffer overflow causing gem installation issues.
* ruby-1.8.7-syck-avoid-buffer-overflow.patch
- Resolves: rhbz#834381


Related CVEs


CVE-2012-4481
CVE-2012-4522

Updated Packages


Release/ArchitectureFilenameMD5sumSuperseded By Advisory
Oracle Linux 5 (i386) ruby-1.8.5-27.el5.src.rpm24971456c8ec2bcaeb3e749768b81a7fELSA-2013-1090
ruby-1.8.5-27.el5.i386.rpmd9f218f8dedb1e8e2a49a9768330e1a8ELSA-2013-1090
ruby-devel-1.8.5-27.el5.i386.rpm2a66213c77c99a57ddbc8e440716e176ELSA-2013-1090
ruby-docs-1.8.5-27.el5.i386.rpm04aab3465dae790fbec9ad46efbc8521ELSA-2013-1090
ruby-irb-1.8.5-27.el5.i386.rpm6540cd70b9c124b651398950a1484c99ELSA-2013-1090
ruby-libs-1.8.5-27.el5.i386.rpm806e17a82577cf33296f4927f76b67d3ELSA-2013-1090
ruby-mode-1.8.5-27.el5.i386.rpm4ef61d03b196a2597cf0d2d363dc8c5aELSA-2013-1090
ruby-rdoc-1.8.5-27.el5.i386.rpm0d39606c8cfc07d72a0f731f0f31c536ELSA-2013-1090
ruby-ri-1.8.5-27.el5.i386.rpme957d73167729539c1954ccade252a0fELSA-2013-1090
ruby-tcltk-1.8.5-27.el5.i386.rpm93a7ce0eec3907bd9ee7923a23f2c17eELSA-2013-1090
Oracle Linux 5 (ia64) ruby-1.8.5-27.el5.src.rpm24971456c8ec2bcaeb3e749768b81a7fELSA-2013-1090
ruby-1.8.5-27.el5.ia64.rpm622b6294a1ba8168718eeb2fa07a09d8ELSA-2013-1090
ruby-devel-1.8.5-27.el5.ia64.rpm0415e578f42f8d08d476c0cb1653cfc7ELSA-2013-1090
ruby-docs-1.8.5-27.el5.ia64.rpm1b6227ebce453deb2901d6317e93fc85ELSA-2013-1090
ruby-irb-1.8.5-27.el5.ia64.rpm7a28772f41ca5e54c071f020bd007b9eELSA-2013-1090
ruby-libs-1.8.5-27.el5.ia64.rpma46eacfabad99d11f1d929cd7276c11eELSA-2013-1090
ruby-mode-1.8.5-27.el5.ia64.rpm9c5f87c2248d6f5b6fc7df5b2a5305c3ELSA-2013-1090
ruby-rdoc-1.8.5-27.el5.ia64.rpmd4796cd9dcb965859fd0e80bcedc9e0bELSA-2013-1090
ruby-ri-1.8.5-27.el5.ia64.rpmde93aa0fff83cbee91300c97530b3262ELSA-2013-1090
ruby-tcltk-1.8.5-27.el5.ia64.rpm9b1a7821ad108755fcc8b5e8e03cdc5fELSA-2013-1090
Oracle Linux 5 (x86_64) ruby-1.8.5-27.el5.src.rpm24971456c8ec2bcaeb3e749768b81a7fELSA-2013-1090
ruby-1.8.5-27.el5.x86_64.rpmc60f5662db7b6d1b1931402f33aee230ELSA-2013-1090
ruby-devel-1.8.5-27.el5.i386.rpm2a66213c77c99a57ddbc8e440716e176ELSA-2013-1090
ruby-devel-1.8.5-27.el5.x86_64.rpmef6e1326ff1577530fcf3b4b7a1744bdELSA-2013-1090
ruby-docs-1.8.5-27.el5.x86_64.rpm165636a581e5dcbf025b0ef5dedaf1b1ELSA-2013-1090
ruby-irb-1.8.5-27.el5.x86_64.rpm321294814a2f4df62375f2ca6e06268aELSA-2013-1090
ruby-libs-1.8.5-27.el5.i386.rpm806e17a82577cf33296f4927f76b67d3ELSA-2013-1090
ruby-libs-1.8.5-27.el5.x86_64.rpm0e920c3289943a6149048153f4b695d2ELSA-2013-1090
ruby-mode-1.8.5-27.el5.x86_64.rpm6a289090622010feca44fac6d6217e55ELSA-2013-1090
ruby-rdoc-1.8.5-27.el5.x86_64.rpm2f9abc2db84b07d5fc630d1bde0884faELSA-2013-1090
ruby-ri-1.8.5-27.el5.x86_64.rpm16349a8cd9046b9991f94a662b091869ELSA-2013-1090
ruby-tcltk-1.8.5-27.el5.x86_64.rpme3a3236db0c73f7b89127611ff7054daELSA-2013-1090



This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

software.hardware.complete
Subscribe | Careers | Contact Us | Legal Notices | Terms of Use | Your Privacy Rights