ELSA-2014-1912

ULN >
Oracle Linux Errata repository >
ELSA-2014-1912

ELSA-2014-1912 - ruby security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2014-11-26

Description

[2.0.0.353-22]
- Fix REXML billion laughs attack via parameter entity expansion
(CVE-2014-8080).
Resolves: rhbz#1163998
- REXML incomplete fix for CVE-2014-8080 (CVE-2014-8090).
Resolves: rhbz#1163998

[2.0.0.353-21]
- Fix off-by-one stack-based buffer overflow in the encodes() function
(CVE-2014-4975)
Resolves: rhbz#1163998

[2.0.0.353-21]
- Fix FTBFS with new tzdata
Related: rhbz#1163998

Related CVEs

CVE-2014-8090

CVE-2014-8080

CVE-2014-4975

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 7 (x86_64)	ruby-2.0.0.353-22.el7_0.src.rpm	169250ebbbbaf90045d422c7cd15dfe7142228efd00ac89f1f855edab1a56127	ELBA-2022-1200	ol7_x86_64_latest_archive
	ruby-2.0.0.353-22.el7_0.src.rpm	169250ebbbbaf90045d422c7cd15dfe7142228efd00ac89f1f855edab1a56127	ELBA-2022-1200	ol7_x86_64_optional_archive
	ruby-2.0.0.353-22.el7_0.src.rpm	169250ebbbbaf90045d422c7cd15dfe7142228efd00ac89f1f855edab1a56127	ELBA-2022-1200	ol7_x86_64_u0_patch
	ruby-2.0.0.353-22.el7_0.x86_64.rpm	0c64b34681f60e67df5b1818290d51a1629426d90ae3efc1226cfbfc214c94b0	ELBA-2022-1200	ol7_x86_64_latest_archive
	ruby-2.0.0.353-22.el7_0.x86_64.rpm	0c64b34681f60e67df5b1818290d51a1629426d90ae3efc1226cfbfc214c94b0	ELBA-2022-1200	ol7_x86_64_u0_patch
	ruby-devel-2.0.0.353-22.el7_0.x86_64.rpm	83833c457175e06770df9abe0fca889b8c67ac168268db1f12c4c32208857dad	ELBA-2022-1200	ol7_x86_64_optional_archive
	ruby-doc-2.0.0.353-22.el7_0.noarch.rpm	d3bee6544eb06ab05f1d2b874f30e208404f1f67b96b2255664328bc07f38866	ELBA-2022-1200	ol7_x86_64_optional_archive
	ruby-irb-2.0.0.353-22.el7_0.noarch.rpm	8b06789e42919af51fd6e0f49ddae6bc3696f28516772572a344469e0e6646ec	ELBA-2022-1200	ol7_x86_64_latest_archive
	ruby-irb-2.0.0.353-22.el7_0.noarch.rpm	8b06789e42919af51fd6e0f49ddae6bc3696f28516772572a344469e0e6646ec	ELBA-2022-1200	ol7_x86_64_u0_patch
	ruby-libs-2.0.0.353-22.el7_0.i686.rpm	77b1bf3da3716c423585650501a322645f1d8d2bfd70d68c3e312fbb90bded7c	ELBA-2022-1200	ol7_x86_64_latest_archive
	ruby-libs-2.0.0.353-22.el7_0.i686.rpm	77b1bf3da3716c423585650501a322645f1d8d2bfd70d68c3e312fbb90bded7c	ELBA-2022-1200	ol7_x86_64_u0_patch
	ruby-libs-2.0.0.353-22.el7_0.x86_64.rpm	7fa26b0552377e8e6a02c433f3b9c45f5f31664cafff1a6e6336b00cca88e8f8	ELBA-2022-1200	ol7_x86_64_latest_archive
	ruby-libs-2.0.0.353-22.el7_0.x86_64.rpm	7fa26b0552377e8e6a02c433f3b9c45f5f31664cafff1a6e6336b00cca88e8f8	ELBA-2022-1200	ol7_x86_64_u0_patch
	ruby-tcltk-2.0.0.353-22.el7_0.x86_64.rpm	97d74a3ada548f16a108ea5880e4aaa2ddeb7084a9fb7a2884ffc5d52d3921aa	ELBA-2022-1200	ol7_x86_64_optional_archive
	rubygem-bigdecimal-1.2.0-22.el7_0.x86_64.rpm	478ecae047d32ea9c4eef90d2f0caf5c06fb00af822be58b8dfb4a6c8cba355e	ELBA-2022-1200	ol7_x86_64_latest_archive
	rubygem-bigdecimal-1.2.0-22.el7_0.x86_64.rpm	478ecae047d32ea9c4eef90d2f0caf5c06fb00af822be58b8dfb4a6c8cba355e	ELBA-2022-1200	ol7_x86_64_u0_patch
	rubygem-io-console-0.4.2-22.el7_0.x86_64.rpm	7e3944afca6b29784fc916428180f9da51aaae15dc57e50ed88cbe4d094fcb17	ELBA-2022-1200	ol7_x86_64_latest_archive
	rubygem-io-console-0.4.2-22.el7_0.x86_64.rpm	7e3944afca6b29784fc916428180f9da51aaae15dc57e50ed88cbe4d094fcb17	ELBA-2022-1200	ol7_x86_64_u0_patch
	rubygem-json-1.7.7-22.el7_0.x86_64.rpm	65a61c1770e816521e14e823cb79447573323f2f15f562a789d3af40cacaee74	ELBA-2022-1200	ol7_x86_64_latest_archive
	rubygem-json-1.7.7-22.el7_0.x86_64.rpm	65a61c1770e816521e14e823cb79447573323f2f15f562a789d3af40cacaee74	ELBA-2022-1200	ol7_x86_64_u0_patch
	rubygem-minitest-4.3.2-22.el7_0.noarch.rpm	033ef658abecd68d466a6d123dc996313ceecd94d0c541d0176e25eb528e3dbb	ELBA-2022-1200	ol7_x86_64_optional_archive
	rubygem-psych-2.0.0-22.el7_0.x86_64.rpm	b175a29bc0d216d2e190f7539501cf1be4c5749b6185b89a98359a41e21d15d5	ELBA-2022-1200	ol7_x86_64_latest_archive
	rubygem-psych-2.0.0-22.el7_0.x86_64.rpm	b175a29bc0d216d2e190f7539501cf1be4c5749b6185b89a98359a41e21d15d5	ELBA-2022-1200	ol7_x86_64_u0_patch
	rubygem-rake-0.9.6-22.el7_0.noarch.rpm	70c934fba1d34129489a8767fd0084a6f33b6aae992f95d738dbd1622c19fe4a	ELBA-2022-1200	ol7_x86_64_optional_archive
	rubygem-rdoc-4.0.0-22.el7_0.noarch.rpm	2f111c213a0acfb2bcf2b679f2613d0c860f210731dbd035d7899e7b802f5d25	ELBA-2022-1200	ol7_x86_64_latest_archive
	rubygem-rdoc-4.0.0-22.el7_0.noarch.rpm	2f111c213a0acfb2bcf2b679f2613d0c860f210731dbd035d7899e7b802f5d25	ELBA-2022-1200	ol7_x86_64_u0_patch
	rubygems-2.0.14-22.el7_0.noarch.rpm	2dfe94edd67cf60a0e71aedfa8bd6d1a1cef00c4215912b467edfe08fdeb727b	ELBA-2022-1200	ol7_x86_64_latest_archive
	rubygems-2.0.14-22.el7_0.noarch.rpm	2dfe94edd67cf60a0e71aedfa8bd6d1a1cef00c4215912b467edfe08fdeb727b	ELBA-2022-1200	ol7_x86_64_u0_patch
	rubygems-devel-2.0.14-22.el7_0.noarch.rpm	a80623acd783eca704c902e2c5929e72d710a64ab0ebec0d86546da2aba45eaa	ELBA-2022-1200	ol7_x86_64_optional_archive

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691