ELSA-2013-1441 - rubygems security update
| Type: | SECURITY |
| Severity: | MODERATE |
| Release Date: | 2013-10-17 |
Description
[1.3.7-4]
- Remove regexp backtracing (CVE-2013-4363).
- Related: rhbz#1002838.
[1.3.7-3]
- Fix insecure connection to SSL repository (CVE-2012-2125, CVE-2012-2126).
- Related: rhbz#1002838.
[1.3.7-2]
- Fix algorithmic complexity vulnerability (CVE-2013-4287).
- Resolves: rhbz#1002838.
Related CVEs
Updated Packages
| Release/Architecture | Filename | MD5sum | Superseded By Advisory |
|
| Oracle Linux 6 (i386) | rubygems-1.3.7-4.el6_4.src.rpm | b998383c6b8552ae3d88030d3ba3b255 | ELBA-2013-1694 |
| rubygems-1.3.7-4.el6_4.noarch.rpm | 49355147a6b27ad008dea4350f967f75 | ELBA-2013-1694 |
|
| Oracle Linux 6 (x86_64) | rubygems-1.3.7-4.el6_4.src.rpm | b998383c6b8552ae3d88030d3ba3b255 | ELBA-2013-1694 |
| rubygems-1.3.7-4.el6_4.noarch.rpm | 49355147a6b27ad008dea4350f967f75 | ELBA-2013-1694 |
This page is generated automatically and has not been checked for errors or omissions. For clarification
or corrections please contact the Oracle Linux ULN team
