ELSA-2019-1972

ULN >
Oracle Linux Errata repository >
ELSA-2019-1972

ELSA-2019-1972 - ruby:2.5 security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2019-08-05

Description

ruby
[2.5.3-104]
- Prohibit arbitrary code execution when installing a malicious gem.
Resolves: CVE-2019-8324

rubygem-mongo
[2.5.1-2]
- Disable tests to fix FTBFS by dropped MongoDB module.
Resolves: rhbz#1710863

rubygem-pg
[1.0.0-2]
- Assign a random testing port.

Related CVEs

CVE-2019-8324

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 8 (aarch64)	ruby-2.5.3-104.module+el8.0.0+5238+4f9ac61b.src.rpm	99f6b59740e0c77cd7e604f914e069b9dcbc0be6b0809df0adc903384e87dbff	-	ol8_aarch64_appstream
	rubygem-abrt-0.3.0-4.module+el8.0.0+5238+4f9ac61b.src.rpm	b8270e9e8a6ab028954f9fddd0ff166c955768fd4b6f945bc21cebd72698e6aa	-	ol8_aarch64_appstream
	rubygem-bson-4.3.0-2.module+el8.0.0+5238+4f9ac61b.src.rpm	b1310040e4b9384b59151b18e891ebf373d0cae44eecb5b9bd5eee9b885fabf7	-	ol8_aarch64_appstream
	rubygem-bundler-1.16.1-3.module+el8.0.0+5238+4f9ac61b.src.rpm	c3336deb4e070a0b9c435f492c0bf718ad9657394e9e257353ac64aba68195f7	-	ol8_aarch64_appstream
	rubygem-mongo-2.5.1-2.module+el8.0.0+5238+4f9ac61b.src.rpm	34b1eb370c209b5862f4fec05d7a380337426636f9cd34b894f416a6be579f7b	-	ol8_aarch64_appstream
	rubygem-mysql2-0.4.10-4.module+el8.0.0+5238+4f9ac61b.src.rpm	02e2a4c4b3d8651de4b373b0bdaaec4eb49c7f306a1e1c2b02a2302157e77782	-	ol8_aarch64_appstream
	rubygem-pg-1.0.0-2.module+el8.0.0+5238+4f9ac61b.src.rpm	4668ca9c3b0cbe4e768b5c83648d29c959a775da09a12508e835ddd2ea26629f	-	ol8_aarch64_appstream
	ruby-2.5.3-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	ce920ec2ff703faeefffa405aa71f921967585e19a63066f58b34cf84f25c432	-	ol8_aarch64_appstream
	ruby-devel-2.5.3-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	01eed1dc9c65ceddf33ff4861e1c2df617de29dab70badebd205ba120716d664	-	ol8_aarch64_appstream
	ruby-doc-2.5.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	1e58cd5b1b57548ce9f09ae5e768ab045f8524bf3ed813058283f8311014da1e	-	ol8_aarch64_appstream
	ruby-irb-2.5.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	09c0cb4af05a62af2c22a5428d8dc3822faefb79425eb003803a5b2c6ce8eafc	-	ol8_aarch64_appstream
	ruby-libs-2.5.3-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	3e5801d642c72ddb216d79276a75db11bf69f405f92485940b1534463c1fc1b2	-	ol8_aarch64_appstream
	rubygem-abrt-0.3.0-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	841392bea7d01abb5fd06d1fae8f4144e85a7203e0e1d7e090cc86ecb013f86f	-	ol8_aarch64_appstream
	rubygem-abrt-doc-0.3.0-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	98e3cf162ecaeec97b3ef820b554da5dfac301119a9484c359673bfda09170a5	-	ol8_aarch64_appstream
	rubygem-bigdecimal-1.3.4-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	5af9e712a774f6fd2fa3a4b864fc5ce43437c9448260ea1433fc371faf1d147a	-	ol8_aarch64_appstream
	rubygem-bson-4.3.0-2.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	d673429951c1b67379a6e21ecc21f540bf0d1234e8e34d5ee66322befb4d52ed	-	ol8_aarch64_appstream
	rubygem-bson-doc-4.3.0-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	b4c04f6d7cfe7cbc399976175795ca9f97973f81714c29ac33285aa7ecaa3a2a	-	ol8_aarch64_appstream
	rubygem-bundler-1.16.1-3.module+el8.0.0+5238+4f9ac61b.noarch.rpm	4d5c4f0d065150c2643ec9d3d007b722d3b56c3a1b58c79a519663622a4ea670	-	ol8_aarch64_appstream
	rubygem-bundler-doc-1.16.1-3.module+el8.0.0+5238+4f9ac61b.noarch.rpm	be13f57a9e8f301ec32645281d52e2f0dd5990b8de31fa90cc198d954824b77c	-	ol8_aarch64_appstream
	rubygem-did_you_mean-1.2.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	ceab7d607adf5ab1f406b9747edc77af737f9dcbf845d1ebcebc98374009569a	-	ol8_aarch64_appstream
	rubygem-io-console-0.4.6-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	efa9080982397339bd9fb4fe1834b49ea791c66045aba67768538d53f2178c2f	-	ol8_aarch64_appstream
	rubygem-json-2.1.0-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	26e2b6989e4673969946bc2978ba6ecef7ed37086ee764a8939ab371b2fc26cd	-	ol8_aarch64_appstream
	rubygem-minitest-5.10.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	97ff91f00a99da074e65afbe620baef8cc154c84af5a469bbfdeea5f250fd4c7	-	ol8_aarch64_appstream
	rubygem-mongo-2.5.1-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	55ecbb598dbf630d69203a16f59af707c1f5c1c24f6086265193b50e862c586a	-	ol8_aarch64_appstream
	rubygem-mongo-doc-2.5.1-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	9901a669a69985cdef17907889d4b85cf3f89aa6a02414c87ad60dd112557e72	-	ol8_aarch64_appstream
	rubygem-mysql2-0.4.10-4.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	3b6f6d38118e5bb2f7561645174ff1530519d4ef0d92907798a1e2e4cb06a121	-	ol8_aarch64_appstream
	rubygem-mysql2-doc-0.4.10-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	a3670d04d385042e293887d5e38359e158a3de7c1617029497c5f1e750416d03	-	ol8_aarch64_appstream
	rubygem-net-telnet-0.1.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	95dc68ee2e015b3d7653ba9eac6016dba6106027f30fa4104310811961978f7d	-	ol8_aarch64_appstream
	rubygem-openssl-2.1.2-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	d7b4202dadc154a56a3bba55b73115266876886a00e0ea222c670f6990ef5ca2	-	ol8_aarch64_appstream
	rubygem-pg-1.0.0-2.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	e8f5b3e1af6e7ef7e4e5c2c0109799e92a223e81e76df6726d6a1e39e4e25208	-	ol8_aarch64_appstream
	rubygem-pg-doc-1.0.0-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	284a05e79bb2acaa4a58e41d563fc34c032177108c9e58e53f8779a847b534c4	-	ol8_aarch64_appstream
	rubygem-power_assert-1.1.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	40987df52928275586aed7399d5bbeac8eaabef16fe510596ac59b311e5702dd	-	ol8_aarch64_appstream
	rubygem-psych-3.0.2-104.module+el8.0.0+5238+4f9ac61b.aarch64.rpm	9ca4b2a31ecef63cd7b2fb64b04341d16d176c886a2ccb7c5e1ecde7d50decef	-	ol8_aarch64_appstream
	rubygem-rake-12.3.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	859e64e8fcea29e54ea531f36709c2310d16195f39e8ae071ed6d50838725cf5	-	ol8_aarch64_appstream
	rubygem-rdoc-6.0.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	0be0de0e81548748ffa8d5c282da7a82ec59f26f24ac594f364a0c87165c56be	-	ol8_aarch64_appstream
	rubygem-test-unit-3.2.7-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	76b6fe9f9f8d49f2194053e4dd100c926f08f1f44986b4c85d7ade114f51b762	-	ol8_aarch64_appstream
	rubygem-xmlrpc-0.3.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	0f6790b34d69d079cf36b41ef7fac6e0f2db1d276d01d44c7fa71acbda4fd948	-	ol8_aarch64_appstream
	rubygems-2.7.6-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	9467cd51f5fda4df5546ffa82d1914a5780e9f4cb052c5b88ab28d5011be9a29	-	ol8_aarch64_appstream
	rubygems-devel-2.7.6-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	96d294a3bcdb1d18f6d0340aa3a04877b0517719563cf7fff2cdf45572d53cc7	-	ol8_aarch64_appstream

Oracle Linux 8 (x86_64)	ruby-2.5.3-104.module+el8.0.0+5238+4f9ac61b.src.rpm	99f6b59740e0c77cd7e604f914e069b9dcbc0be6b0809df0adc903384e87dbff	-	ol8_x86_64_appstream
	rubygem-abrt-0.3.0-4.module+el8.0.0+5238+4f9ac61b.src.rpm	b8270e9e8a6ab028954f9fddd0ff166c955768fd4b6f945bc21cebd72698e6aa	-	ol8_x86_64_appstream
	rubygem-bson-4.3.0-2.module+el8.0.0+5238+4f9ac61b.src.rpm	b1310040e4b9384b59151b18e891ebf373d0cae44eecb5b9bd5eee9b885fabf7	-	ol8_x86_64_appstream
	rubygem-bundler-1.16.1-3.module+el8.0.0+5238+4f9ac61b.src.rpm	c3336deb4e070a0b9c435f492c0bf718ad9657394e9e257353ac64aba68195f7	-	ol8_x86_64_appstream
	rubygem-mongo-2.5.1-2.module+el8.0.0+5238+4f9ac61b.src.rpm	34b1eb370c209b5862f4fec05d7a380337426636f9cd34b894f416a6be579f7b	-	ol8_x86_64_appstream
	rubygem-mysql2-0.4.10-4.module+el8.0.0+5238+4f9ac61b.src.rpm	02e2a4c4b3d8651de4b373b0bdaaec4eb49c7f306a1e1c2b02a2302157e77782	-	ol8_x86_64_appstream
	rubygem-pg-1.0.0-2.module+el8.0.0+5238+4f9ac61b.src.rpm	4668ca9c3b0cbe4e768b5c83648d29c959a775da09a12508e835ddd2ea26629f	-	ol8_x86_64_appstream
	ruby-2.5.3-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	b91a338de0766c15db3fc8253713e5ed7b8c93f989d2bd47fa3134c3338e7adb	-	ol8_x86_64_appstream
	ruby-2.5.3-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	00a4913e617b5803ed773c805a5efd1a549fbf25c0453b1272cc26e8c4423477	-	ol8_x86_64_appstream
	ruby-devel-2.5.3-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	a2ad797cfd4d8152800eb02d7398559b56819fd9971deabe5f7251f75ccc02f7	-	ol8_x86_64_appstream
	ruby-devel-2.5.3-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	25b73f33eccefa76618cff6e3489183d771c3f965ff6961a7e502aefe9172199	-	ol8_x86_64_appstream
	ruby-doc-2.5.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	1e58cd5b1b57548ce9f09ae5e768ab045f8524bf3ed813058283f8311014da1e	-	ol8_x86_64_appstream
	ruby-irb-2.5.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	09c0cb4af05a62af2c22a5428d8dc3822faefb79425eb003803a5b2c6ce8eafc	-	ol8_x86_64_appstream
	ruby-libs-2.5.3-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	3fffa021f3baa9a895f897330c6bfb58fe27a22595723e7dfd89ade49043068f	-	ol8_x86_64_appstream
	ruby-libs-2.5.3-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	101c979e9728918f7a48da433d7df9ed5715688b2e14d7546fa030618a951e78	-	ol8_x86_64_appstream
	rubygem-abrt-0.3.0-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	841392bea7d01abb5fd06d1fae8f4144e85a7203e0e1d7e090cc86ecb013f86f	-	ol8_x86_64_appstream
	rubygem-abrt-doc-0.3.0-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	98e3cf162ecaeec97b3ef820b554da5dfac301119a9484c359673bfda09170a5	-	ol8_x86_64_appstream
	rubygem-bigdecimal-1.3.4-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	73601c67c718fbebd0c891806f74da64c56fd2a9328576d3a944bc7e32aef730	-	ol8_x86_64_appstream
	rubygem-bigdecimal-1.3.4-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	2512c42caa273528e035f41007b8629ad5530eb98d6fdb74058a832f2a70eec2	-	ol8_x86_64_appstream
	rubygem-bson-4.3.0-2.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	ee10023d7ded06bc99d9117daa681ab7fc890940425c610cfa560a05b44fbf3d	-	ol8_x86_64_appstream
	rubygem-bson-doc-4.3.0-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	b4c04f6d7cfe7cbc399976175795ca9f97973f81714c29ac33285aa7ecaa3a2a	-	ol8_x86_64_appstream
	rubygem-bundler-1.16.1-3.module+el8.0.0+5238+4f9ac61b.noarch.rpm	4d5c4f0d065150c2643ec9d3d007b722d3b56c3a1b58c79a519663622a4ea670	-	ol8_x86_64_appstream
	rubygem-bundler-doc-1.16.1-3.module+el8.0.0+5238+4f9ac61b.noarch.rpm	be13f57a9e8f301ec32645281d52e2f0dd5990b8de31fa90cc198d954824b77c	-	ol8_x86_64_appstream
	rubygem-did_you_mean-1.2.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	ceab7d607adf5ab1f406b9747edc77af737f9dcbf845d1ebcebc98374009569a	-	ol8_x86_64_appstream
	rubygem-io-console-0.4.6-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	e9ad447cfdcff3f670ce2f0d924b2e8ec460af4dfc7f208f026da8933e9543c8	-	ol8_x86_64_appstream
	rubygem-io-console-0.4.6-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	c1a4595be5c600252b6a59fc44ee15531503bfa9138cf23275f68df3f83a49c9	-	ol8_x86_64_appstream
	rubygem-json-2.1.0-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	3a27fa164089c1ba4a027d33f46d951524d661190362fcb8e1411ab98b86bc76	-	ol8_x86_64_appstream
	rubygem-json-2.1.0-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	c544d89c7d98a0b7edb1def2dca4a7531a92bfcee9c29a64d8cd7a35ad0a040e	-	ol8_x86_64_appstream
	rubygem-minitest-5.10.3-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	97ff91f00a99da074e65afbe620baef8cc154c84af5a469bbfdeea5f250fd4c7	-	ol8_x86_64_appstream
	rubygem-mongo-2.5.1-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	55ecbb598dbf630d69203a16f59af707c1f5c1c24f6086265193b50e862c586a	-	ol8_x86_64_appstream
	rubygem-mongo-doc-2.5.1-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	9901a669a69985cdef17907889d4b85cf3f89aa6a02414c87ad60dd112557e72	-	ol8_x86_64_appstream
	rubygem-mysql2-0.4.10-4.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	13abe680118992316962febb32aa19bf2015ee7557c820a9c234a9e2250d9659	-	ol8_x86_64_appstream
	rubygem-mysql2-doc-0.4.10-4.module+el8.0.0+5238+4f9ac61b.noarch.rpm	a3670d04d385042e293887d5e38359e158a3de7c1617029497c5f1e750416d03	-	ol8_x86_64_appstream
	rubygem-net-telnet-0.1.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	95dc68ee2e015b3d7653ba9eac6016dba6106027f30fa4104310811961978f7d	-	ol8_x86_64_appstream
	rubygem-openssl-2.1.2-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	dcc46925375836a02a59f6bb302a789dfae46177b860aa5dc2b999c5daab2efc	-	ol8_x86_64_appstream
	rubygem-openssl-2.1.2-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	3985203574a166cb9a112e80cb1425e1e06b47badda09e563bb8c0ebaf8dc307	-	ol8_x86_64_appstream
	rubygem-pg-1.0.0-2.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	a1b003344a4c18ca508a5a9c9f9083c33e34ab7fe576737deb5e0a948dde3d58	-	ol8_x86_64_appstream
	rubygem-pg-doc-1.0.0-2.module+el8.0.0+5238+4f9ac61b.noarch.rpm	284a05e79bb2acaa4a58e41d563fc34c032177108c9e58e53f8779a847b534c4	-	ol8_x86_64_appstream
	rubygem-power_assert-1.1.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	40987df52928275586aed7399d5bbeac8eaabef16fe510596ac59b311e5702dd	-	ol8_x86_64_appstream
	rubygem-psych-3.0.2-104.module+el8.0.0+5238+4f9ac61b.i686.rpm	3903adddd6b9a2232116e86f2fbf575328b3cfe93f56a4db754284cb0be94223	-	ol8_x86_64_appstream
	rubygem-psych-3.0.2-104.module+el8.0.0+5238+4f9ac61b.x86_64.rpm	b26e5d4629b99610a94af44fd1da146119dc514245a08daa3f768421c1e4c7bc	-	ol8_x86_64_appstream
	rubygem-rake-12.3.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	859e64e8fcea29e54ea531f36709c2310d16195f39e8ae071ed6d50838725cf5	-	ol8_x86_64_appstream
	rubygem-rdoc-6.0.1-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	0be0de0e81548748ffa8d5c282da7a82ec59f26f24ac594f364a0c87165c56be	-	ol8_x86_64_appstream
	rubygem-test-unit-3.2.7-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	76b6fe9f9f8d49f2194053e4dd100c926f08f1f44986b4c85d7ade114f51b762	-	ol8_x86_64_appstream
	rubygem-xmlrpc-0.3.0-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	0f6790b34d69d079cf36b41ef7fac6e0f2db1d276d01d44c7fa71acbda4fd948	-	ol8_x86_64_appstream
	rubygems-2.7.6-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	9467cd51f5fda4df5546ffa82d1914a5780e9f4cb052c5b88ab28d5011be9a29	-	ol8_x86_64_appstream
	rubygems-devel-2.7.6-104.module+el8.0.0+5238+4f9ac61b.noarch.rpm	96d294a3bcdb1d18f6d0340aa3a04877b0517719563cf7fff2cdf45572d53cc7	-	ol8_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691