ELSA-2019-1972

ULN >
Oracle Linux Errata repository >
ELSA-2019-1972

ELSA-2019-1972 - ruby:2.5 security update

Type:	SECURITY
Severity:	IMPORTANT
Release Date:	2019-08-05

Description

ruby
[2.5.3-104]
- Prohibit arbitrary code execution when installing a malicious gem.
Resolves: CVE-2019-8324

rubygem-mongo
[2.5.1-2]
- Disable tests to fix FTBFS by dropped MongoDB module.
Resolves: rhbz#1710863

rubygem-pg
[1.0.0-2]
- Assign a random testing port.

Related CVEs

CVE-2019-8324

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory

Oracle Linux 8 (aarch64)	ruby-2.5.3-104.module+el8.0.0+5238+4f9ac61b.src.rpm	ead11040b72fe471db0ffd942bb56ad7	-
	rubygem-abrt-0.3.0-4.module+el8.0.0+5238+4f9ac61b.src.rpm	40ed1946a2d734aec495fc099fbe917b	-
	rubygem-bson-4.3.0-2.module+el8.0.0+5238+4f9ac61b.src.rpm	60a54cda526a8d3e43f9d1924102ca22	-
	rubygem-bundler-1.16.1-3.module+el8.0.0+5238+4f9ac61b.src.rpm	574259906a91d91274e4d0d4f39b1db3	-
	rubygem-mongo-2.5.1-2.module+el8.0.0+5238+4f9ac61b.src.rpm	7ff268a2557310a15ead736694ba6202	-
	rubygem-mysql2-0.4.10-4.module+el8.0.0+5238+4f9ac61b.src.rpm	a4fc52e82a88f7e1ff1e37df0e650b44	-
	rubygem-pg-1.0.0-2.module+el8.0.0+5238+4f9ac61b.src.rpm	65aafb1ffe9e44608df218c18f9f868f	-
	ruby-2.5.3-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	5a2f8a9277f8cefc57092c7a3e428e00	-
	ruby-devel-2.5.3-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	fbff9f671ea8f223c6f55af79c437867	-
	ruby-doc-2.5.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	46d3634d34d46aceca6457531b7662ec	-
	ruby-irb-2.5.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	95a2a28f4441f8d961a056195bac1aee	-
	ruby-libs-2.5.3-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	38b2dc16276dc562ee534ff2362ee0b3	-
	rubygem-abrt-0.3.0-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	feb398fafe6d6a224ca408a52afab9e6	-
	rubygem-abrt-doc-0.3.0-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	d038646e1f09d149058476703acaeb7e	-
	rubygem-bigdecimal-1.3.4-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	2c638db73a82befb0fe20d0bcf83cb6f	-
	rubygem-bson-4.3.0-2.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	198f5b972e69b0a37b8bb307c608866c	-
	rubygem-bson-doc-4.3.0-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	055ea572b4ef74e8916f0217f353820a	-
	rubygem-bundler-1.16.1-3.module+el8.0.0+5238+4f9ac61b.noarch.rpm	8754dc2348866e313c581d50f03f0992	-
	rubygem-bundler-doc-1.16.1-3.module+el8.0.0+5238+4f9ac61b.noarch.rpm	2288ddba1fc0556bb68ce411ab5aadfa	-
	rubygem-did_you_mean-1.2.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	3328496a4c8b833b32d5f9d540a55dbe	-
	rubygem-io-console-0.4.6-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	48e1f50b82957dbb34c3b6c5298e897c	-
	rubygem-json-2.1.0-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	93c8505ecedfe559ffbaa6d75292ee79	-
	rubygem-minitest-5.10.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	3e10468599063a565139b3d4cf53ff31	-
	rubygem-mongo-2.5.1-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	4567d36d56359f21be93ce1d3766ed5d	-
	rubygem-mongo-doc-2.5.1-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	de8dd98fe4064138031a4d34b71f227e	-
	rubygem-mysql2-0.4.10-4.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	bcfa43dc89c5ec52d206e40104e0a542	-
	rubygem-mysql2-doc-0.4.10-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	0bfedf7f6adc217d83aa4b5042b831ba	-
	rubygem-net-telnet-0.1.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	257cb840e3d61e8bfc03b255c32e2419	-
	rubygem-openssl-2.1.2-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	e1d83cef37d8c5ccf32c2097fb968a60	-
	rubygem-pg-1.0.0-2.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	68e03695a27f5c8157b1cb280ab9bde0	-
	rubygem-pg-doc-1.0.0-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	62d74cab6fcd9eeb82c23096396adb65	-
	rubygem-power_assert-1.1.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	bd286cb09a4b63b6b4ec428c1eb5e88e	-
	rubygem-psych-3.0.2-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	227fad554f13d84e76e3025cbbf9d901	-
	rubygem-rake-12.3.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	1dea1f16ff5a6a11360e8ad449a170bc	-
	rubygem-rdoc-6.0.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	fd7031cb82fca37266990f277571e844	-
	rubygem-test-unit-3.2.7-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	fd370eafc9777ca26512ccc0891cf8ad	-
	rubygem-xmlrpc-0.3.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	11de2c290ec9ac7f297e88a3fc126f1e	-
	rubygems-2.7.6-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	f72296c0df600c8b1a0554bd50ce78ce	-
	rubygems-devel-2.7.6-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	08cb459bc50b5887302b336359b41e83	-

Oracle Linux 8 (x86_64)	ruby-2.5.3-104.module+el8.0.0+5238+4f9ac61b.src.rpm	ead11040b72fe471db0ffd942bb56ad7	-
	rubygem-abrt-0.3.0-4.module+el8.0.0+5238+4f9ac61b.src.rpm	40ed1946a2d734aec495fc099fbe917b	-
	rubygem-bson-4.3.0-2.module+el8.0.0+5238+4f9ac61b.src.rpm	60a54cda526a8d3e43f9d1924102ca22	-
	rubygem-bundler-1.16.1-3.module+el8.0.0+5238+4f9ac61b.src.rpm	574259906a91d91274e4d0d4f39b1db3	-
	rubygem-mongo-2.5.1-2.module+el8.0.0+5238+4f9ac61b.src.rpm	7ff268a2557310a15ead736694ba6202	-
	rubygem-mysql2-0.4.10-4.module+el8.0.0+5238+4f9ac61b.src.rpm	a4fc52e82a88f7e1ff1e37df0e650b44	-
	rubygem-pg-1.0.0-2.module+el8.0.0+5238+4f9ac61b.src.rpm	65aafb1ffe9e44608df218c18f9f868f	-
	ruby-2.5.3-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	20cbb51d27cf96e830d8170e73c780cc	-
	ruby-2.5.3-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	e440224ba41c44785c264a7ff6dc9720	-
	ruby-devel-2.5.3-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	7ff87274c4e6b993374755712b013fc3	-
	ruby-devel-2.5.3-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	2d6b311db687bdc353e0c40877353eaf	-
	ruby-doc-2.5.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	46d3634d34d46aceca6457531b7662ec	-
	ruby-irb-2.5.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	95a2a28f4441f8d961a056195bac1aee	-
	ruby-libs-2.5.3-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	1b00c28f42092f4ed383d421983db27a	-
	ruby-libs-2.5.3-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	dce3a4064728f7fcc684d78568c8e726	-
	rubygem-abrt-0.3.0-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	feb398fafe6d6a224ca408a52afab9e6	-
	rubygem-abrt-doc-0.3.0-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	d038646e1f09d149058476703acaeb7e	-
	rubygem-bigdecimal-1.3.4-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	06c76d3af1ea542bd8f0bb8be29a8508	-
	rubygem-bigdecimal-1.3.4-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	faaf10a194d3d4f9d2de9917c9a91c69	-
	rubygem-bson-4.3.0-2.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	b7a9871db6d8c89eb76617139d671302	-
	rubygem-bson-doc-4.3.0-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	055ea572b4ef74e8916f0217f353820a	-
	rubygem-bundler-1.16.1-3.module+el8.0.0+5238+4f9ac61b.noarch.rpm	8754dc2348866e313c581d50f03f0992	-
	rubygem-bundler-doc-1.16.1-3.module+el8.0.0+5238+4f9ac61b.noarch.rpm	2288ddba1fc0556bb68ce411ab5aadfa	-
	rubygem-did_you_mean-1.2.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	3328496a4c8b833b32d5f9d540a55dbe	-
	rubygem-io-console-0.4.6-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	d88299687d3ffc4388aa129db65dc037	-
	rubygem-io-console-0.4.6-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	ae331af9ca6d4c926e03af24cc5aed18	-
	rubygem-json-2.1.0-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	4ad50dc0623e4b7c39febbea3475c3e9	-
	rubygem-json-2.1.0-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	a35879f4af2cf74301d086fe6f5b5f1c	-
	rubygem-minitest-5.10.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	3e10468599063a565139b3d4cf53ff31	-
	rubygem-mongo-2.5.1-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	4567d36d56359f21be93ce1d3766ed5d	-
	rubygem-mongo-doc-2.5.1-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	de8dd98fe4064138031a4d34b71f227e	-
	rubygem-mysql2-0.4.10-4.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	416257781694210a3bce98f4e72b5843	-
	rubygem-mysql2-doc-0.4.10-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	0bfedf7f6adc217d83aa4b5042b831ba	-
	rubygem-net-telnet-0.1.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	257cb840e3d61e8bfc03b255c32e2419	-
	rubygem-openssl-2.1.2-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	e563b1e11de636256bb63fc2fbf43b25	-
	rubygem-openssl-2.1.2-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	7e08b28f12c32cf832ae52bd09cb2601	-
	rubygem-pg-1.0.0-2.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	d0c6ed8145252f5fab66542621fe7fd8	-
	rubygem-pg-doc-1.0.0-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	62d74cab6fcd9eeb82c23096396adb65	-
	rubygem-power_assert-1.1.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	bd286cb09a4b63b6b4ec428c1eb5e88e	-
	rubygem-psych-3.0.2-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	99b2db9b028a2e642123b553eb5f4493	-
	rubygem-psych-3.0.2-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	c3b5d236b4f81942b24feec99e1864bd	-
	rubygem-rake-12.3.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	1dea1f16ff5a6a11360e8ad449a170bc	-
	rubygem-rdoc-6.0.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	fd7031cb82fca37266990f277571e844	-
	rubygem-test-unit-3.2.7-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	fd370eafc9777ca26512ccc0891cf8ad	-
	rubygem-xmlrpc-0.3.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	11de2c290ec9ac7f297e88a3fc126f1e	-
	rubygems-2.7.6-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	f72296c0df600c8b1a0554bd50ce78ce	-
	rubygems-devel-2.7.6-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	08cb459bc50b5887302b336359b41e83	-

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691