ELSA-2014-1913

ULN >
Oracle Linux Errata repository >
ELSA-2014-1913

ELSA-2014-1913 - ruby193-ruby security update

Type:	SECURITY
Impact:	MODERATE
Release Date:	2016-02-04

Description

[1.9.3.484-50.0.1]
- fix build issue: self test report 'dh key to small'

[1.9.3.484-50]
- Fix off-by-one stack-based buffer overflow in the encodes() function
(CVE-2014-4975).
Related: rhbz#1164004
- Fix REXML billion laughs attack via parameter entity expansion
(CVE-2014-8080).
Related: rhbz#1164004
- REXML incomplete fix for CVE-2014-8080 (CVE-2014-8090).
Related: rhbz#1164004

Related CVEs

CVE-2014-8090

CVE-2014-4975

CVE-2014-8080

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 6 (x86_64)	ruby193-ruby-1.9.3.484-50.0.1.el6.src.rpm	5ccb1588fe69b51e9ae95f99ffa2fc01d623dfaa4ac428aa1fac07bb66d6f381	-	ol6_x86_64_SoftwareCollections
	ruby193-ruby-1.9.3.484-50.0.1.el6.x86_64.rpm	1981cd14f848b6ed4c7596608f6212f49604b7e2e7bf0f01232a98748873cfe0	-	ol6_x86_64_SoftwareCollections
	ruby193-ruby-devel-1.9.3.484-50.0.1.el6.x86_64.rpm	60d99a7bc79dc806549df4b68c4aa0604c4544f0f39ee93167c8b8289b32a663	-	ol6_x86_64_SoftwareCollections
	ruby193-ruby-doc-1.9.3.484-50.0.1.el6.x86_64.rpm	68f4926863746ecccf2ab690ca17108b0b936fa76b5145a5139864bb8f92866a	-	ol6_x86_64_SoftwareCollections
	ruby193-ruby-irb-1.9.3.484-50.0.1.el6.noarch.rpm	c8b6c82f1bebba8bb1b23736fee248f90ca502705eb1cf96f8597ccd65bdadec	-	ol6_x86_64_SoftwareCollections
	ruby193-ruby-libs-1.9.3.484-50.0.1.el6.x86_64.rpm	5f7b1646162a44a1f7e6e2a3cbc48926c4fe7e8eb6f90cc02ac1df019c2babe3	-	ol6_x86_64_SoftwareCollections
	ruby193-ruby-tcltk-1.9.3.484-50.0.1.el6.x86_64.rpm	862be64a15de614fd17abbae7a1ad0dfa9287b1a7c0134158d3584d4b9c0d786	-	ol6_x86_64_SoftwareCollections
	ruby193-rubygem-bigdecimal-1.1.0-50.0.1.el6.x86_64.rpm	e931f22a9576be0e356b78e64d12c756e2163d5f11f227618dafea186da5ac0b	-	ol6_x86_64_SoftwareCollections
	ruby193-rubygem-io-console-0.3-50.0.1.el6.x86_64.rpm	6aaa328193196bef58eeecc74176e10f305e4b855091c5af4db6e57fdeab26b4	-	ol6_x86_64_SoftwareCollections
	ruby193-rubygem-json-1.5.5-50.0.1.el6.x86_64.rpm	7447077abc94c178dd06e5f76d98d4912b065ef5359ccd1804b388674774ae9e	-	ol6_x86_64_SoftwareCollections
	ruby193-rubygem-minitest-2.5.1-50.0.1.el6.noarch.rpm	3938726bc17e3ace07606bb1a10dffc22b3c59b4ff5ae7d3c4ee4dcfd52430e0	-	ol6_x86_64_SoftwareCollections
	ruby193-rubygem-rake-0.9.2.2-50.0.1.el6.noarch.rpm	a0d1297ab80067fbf0b46f93dcf28a5dded223045625db872e8756f86b31885c	-	ol6_x86_64_SoftwareCollections
	ruby193-rubygem-rdoc-3.9.5-50.0.1.el6.x86_64.rpm	d61d4d2279bd1ae861c68a423339f2b4d3ed6e648e0f96a9dea9023d8f9f7fd0	-	ol6_x86_64_SoftwareCollections
	ruby193-rubygems-1.8.23-50.0.1.el6.noarch.rpm	f2e77f38c5885b2a93853443a9212c061352dff77b8bddbf12badc3046d3ec12	-	ol6_x86_64_SoftwareCollections
	ruby193-rubygems-devel-1.8.23-50.0.1.el6.noarch.rpm	81ecce3af4b48ff95fc598fdc3314d80c52c6d5c5d379c316321e57c15e518f5	-	ol6_x86_64_SoftwareCollections

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691