ELSA-2014-1911

ULN >
Oracle Linux Errata repository >
ELSA-2014-1911

ELSA-2014-1911 - ruby security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2014-11-26

Description

[1.8.7.374-3]
- Fix REXML billion laughs attack via parameter entity expansion
(CVE-2014-8080).
Resolves: rhbz#1163993
- REXML incomplete fix for CVE-2014-8080 (CVE-2014-8090).
Resolves: rhbz#1163993

Related CVEs

CVE-2014-8090

CVE-2014-8080

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (i386)	ruby-1.8.7.374-3.el6_6.src.rpm	83b248424cc0b6abdbb05e3a8217d81515dc3470ddd7b0e4add2a35eccd6c012	ELBA-2017-0647	ol6_i386_latest_archive
	ruby-1.8.7.374-3.el6_6.src.rpm	83b248424cc0b6abdbb05e3a8217d81515dc3470ddd7b0e4add2a35eccd6c012	ELBA-2017-0647	ol6_u6_i386_patch
	ruby-1.8.7.374-3.el6_6.i686.rpm	d85f286e8b5da6bf36125d61b050f21533b2014d639e89748703a8f165a99aac	ELBA-2017-0647	ol6_i386_latest_archive
	ruby-1.8.7.374-3.el6_6.i686.rpm	d85f286e8b5da6bf36125d61b050f21533b2014d639e89748703a8f165a99aac	ELBA-2017-0647	ol6_u6_i386_patch
	ruby-devel-1.8.7.374-3.el6_6.i686.rpm	6e2c8d0e0f5914cf3d34baac29fdac79e1f9de2342f9d23b1d422bd368dc15aa	ELBA-2017-0647	ol6_i386_latest_archive
	ruby-devel-1.8.7.374-3.el6_6.i686.rpm	6e2c8d0e0f5914cf3d34baac29fdac79e1f9de2342f9d23b1d422bd368dc15aa	ELBA-2017-0647	ol6_u6_i386_patch
	ruby-docs-1.8.7.374-3.el6_6.i686.rpm	1f5c4b1735c63dbd3beaac18026294dd4fbf880f5118490169eeecb72d609baa	ELBA-2017-0647	ol6_i386_latest_archive
	ruby-docs-1.8.7.374-3.el6_6.i686.rpm	1f5c4b1735c63dbd3beaac18026294dd4fbf880f5118490169eeecb72d609baa	ELBA-2017-0647	ol6_u6_i386_patch
	ruby-irb-1.8.7.374-3.el6_6.i686.rpm	cfb081305747136a9b9d228a1e5dcc6466827c21c99db4ca112661000c056168	ELBA-2017-0647	ol6_i386_latest_archive
	ruby-irb-1.8.7.374-3.el6_6.i686.rpm	cfb081305747136a9b9d228a1e5dcc6466827c21c99db4ca112661000c056168	ELBA-2017-0647	ol6_u6_i386_patch
	ruby-libs-1.8.7.374-3.el6_6.i686.rpm	6fd4df11f68c9c19eab2542de9c36c012dfd7353bdf0081fc0a5fff71a412017	ELBA-2017-0647	ol6_i386_latest_archive
	ruby-libs-1.8.7.374-3.el6_6.i686.rpm	6fd4df11f68c9c19eab2542de9c36c012dfd7353bdf0081fc0a5fff71a412017	ELBA-2017-0647	ol6_u6_i386_patch
	ruby-rdoc-1.8.7.374-3.el6_6.i686.rpm	c43ef258a141c00d84873da4b1ed270e69f59a144a7b79c743131dd4881482cc	ELBA-2017-0647	ol6_i386_latest_archive
	ruby-rdoc-1.8.7.374-3.el6_6.i686.rpm	c43ef258a141c00d84873da4b1ed270e69f59a144a7b79c743131dd4881482cc	ELBA-2017-0647	ol6_u6_i386_patch
	ruby-ri-1.8.7.374-3.el6_6.i686.rpm	3764c82652bd66af51730ef3df32f8abe1aaa6997b2fd2091753266b30eadded	ELBA-2017-0647	ol6_i386_latest_archive
	ruby-ri-1.8.7.374-3.el6_6.i686.rpm	3764c82652bd66af51730ef3df32f8abe1aaa6997b2fd2091753266b30eadded	ELBA-2017-0647	ol6_u6_i386_patch
	ruby-static-1.8.7.374-3.el6_6.i686.rpm	9e4e8a044b14d8da3e573b6ecc8aca8209a601eba4d660d991df1d490fb1b9fd	ELBA-2017-0647	ol6_i386_latest_archive
	ruby-static-1.8.7.374-3.el6_6.i686.rpm	9e4e8a044b14d8da3e573b6ecc8aca8209a601eba4d660d991df1d490fb1b9fd	ELBA-2017-0647	ol6_u6_i386_patch
	ruby-tcltk-1.8.7.374-3.el6_6.i686.rpm	7c35bd6de4dd4ec3745c1d9c8439eb7a7bc173a1fab9eb4bccaa34bbc8492e50	ELBA-2017-0647	ol6_i386_latest_archive
	ruby-tcltk-1.8.7.374-3.el6_6.i686.rpm	7c35bd6de4dd4ec3745c1d9c8439eb7a7bc173a1fab9eb4bccaa34bbc8492e50	ELBA-2017-0647	ol6_u6_i386_patch

Oracle Linux 6 (x86_64)	ruby-1.8.7.374-3.el6_6.src.rpm	83b248424cc0b6abdbb05e3a8217d81515dc3470ddd7b0e4add2a35eccd6c012	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-1.8.7.374-3.el6_6.src.rpm	83b248424cc0b6abdbb05e3a8217d81515dc3470ddd7b0e4add2a35eccd6c012	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-1.8.7.374-3.el6_6.x86_64.rpm	4de67d521ffab36783eecae6fc1b889d6ce5fe24f5dd0c4cc1db5a86f24e5a70	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-1.8.7.374-3.el6_6.x86_64.rpm	4de67d521ffab36783eecae6fc1b889d6ce5fe24f5dd0c4cc1db5a86f24e5a70	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-devel-1.8.7.374-3.el6_6.i686.rpm	6e2c8d0e0f5914cf3d34baac29fdac79e1f9de2342f9d23b1d422bd368dc15aa	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-devel-1.8.7.374-3.el6_6.i686.rpm	6e2c8d0e0f5914cf3d34baac29fdac79e1f9de2342f9d23b1d422bd368dc15aa	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-devel-1.8.7.374-3.el6_6.x86_64.rpm	d61e5a6bddaf048e3c6f10744c4a6c35d75ea5973a862149419eceb22117697e	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-devel-1.8.7.374-3.el6_6.x86_64.rpm	d61e5a6bddaf048e3c6f10744c4a6c35d75ea5973a862149419eceb22117697e	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-docs-1.8.7.374-3.el6_6.x86_64.rpm	95f6010489cab5b7e7da053654048f372485d592c6eb49eba631180c8a8f29cf	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-docs-1.8.7.374-3.el6_6.x86_64.rpm	95f6010489cab5b7e7da053654048f372485d592c6eb49eba631180c8a8f29cf	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-irb-1.8.7.374-3.el6_6.x86_64.rpm	03946a261ca9c73839a2058be4f864dc49aa5c810b9fcb7f8d2f3342ca8258ec	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-irb-1.8.7.374-3.el6_6.x86_64.rpm	03946a261ca9c73839a2058be4f864dc49aa5c810b9fcb7f8d2f3342ca8258ec	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-libs-1.8.7.374-3.el6_6.i686.rpm	6fd4df11f68c9c19eab2542de9c36c012dfd7353bdf0081fc0a5fff71a412017	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-libs-1.8.7.374-3.el6_6.i686.rpm	6fd4df11f68c9c19eab2542de9c36c012dfd7353bdf0081fc0a5fff71a412017	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-libs-1.8.7.374-3.el6_6.x86_64.rpm	3215031bff12f1b0273adec5798250a8a079ba985c77920353418a1ac4dcad38	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-libs-1.8.7.374-3.el6_6.x86_64.rpm	3215031bff12f1b0273adec5798250a8a079ba985c77920353418a1ac4dcad38	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-rdoc-1.8.7.374-3.el6_6.x86_64.rpm	23cef4c76179cc9288fa73338f2840c2ab2fe113be42825d62342adaa6d86b1f	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-rdoc-1.8.7.374-3.el6_6.x86_64.rpm	23cef4c76179cc9288fa73338f2840c2ab2fe113be42825d62342adaa6d86b1f	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-ri-1.8.7.374-3.el6_6.x86_64.rpm	4dff91286046cd73319bd8e147ea73ba6360ff3c9fcb5baee294a32696cec586	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-ri-1.8.7.374-3.el6_6.x86_64.rpm	4dff91286046cd73319bd8e147ea73ba6360ff3c9fcb5baee294a32696cec586	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-static-1.8.7.374-3.el6_6.x86_64.rpm	e073edc0d8bf7ec3af7457a3a08e6f191978fa53f759fe8c7c6be54f7764a5fc	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-static-1.8.7.374-3.el6_6.x86_64.rpm	e073edc0d8bf7ec3af7457a3a08e6f191978fa53f759fe8c7c6be54f7764a5fc	ELBA-2017-0647	ol6_x86_64_latest_archive
	ruby-tcltk-1.8.7.374-3.el6_6.x86_64.rpm	50dbfa1854315883585c8ddc13352bad9522b26d498de27f55fc31d571dd9109	ELBA-2017-0647	ol6_u6_x86_64_patch
	ruby-tcltk-1.8.7.374-3.el6_6.x86_64.rpm	50dbfa1854315883585c8ddc13352bad9522b26d498de27f55fc31d571dd9109	ELBA-2017-0647	ol6_x86_64_latest_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691