ELSA-2024-3668

ULN >
Oracle Linux Errata repository >
ELSA-2024-3668

ELSA-2024-3668 - ruby:3.1 security, bug fix, and enhancement update

Type:	SECURITY
Severity:	MODERATE
Release Date:	2024-06-06

Description

ruby
[3.1.5-144]
- Upgrade to Ruby 3.1.5.
Resolves: RHEL-33978
- Fix buffer overread vulnerability in StringIO.
Resolves: RHEL-34129
- Fix RCE vulnerability with .rdoc_options in RDoc.
Resolves: RHEL-34121
- Fix arbitrary memory address read vulnerability with Regex search.
Resolves: RHEL-33871

[3.1.4-143]
- Upgrade to Ruby 3.1.4.
Resolves: RHEL-5586
- Fix HTTP response splitting in CGI.
Resolves: RHEL-5591
- Fix ReDos vulnerability in URI.
Resolves: RHEL-28919
Resolves: RHEL-5612
- Fix ReDos vulnerability in Time.
Resolves: RHEL-28920
- Make RDoc soft dependency in IRB.
Resolves: RHEL-5613

[3.1.2-142]
- Bypass git submodule test failure on Git >= 2.38.1.
- Fix tests with Europe/Amsterdam pre-1970 time on tzdata version 2022b.
- Fix for tzdata-2022g.
- Fix OpenSSL.fips_mode and OpenSSL::PKey.read in OpenSSL 3 FIPS.
Resolves: RHEL-5590
- ssl: use ffdhe2048 from RFC 7919 as the default DH group parameters
Related: RHEL-5590
- Disable fiddle tests that use FFI closures.
Related: RHEL-5590

[3.1.2-141]
- Upgrade to Ruby 3.1.2 by merging Fedora Rawhide branch (commit: b7b5473).
Resolves: rhbz#2063773

rubygem-mysql2
[0.5.4-1]
- New upstream release 0.5.4 by merging Fedora rawhide branch (commit: e21b5b9)
Resolves: rhbz#2063773

[0.5.3-1]
- New upstream release 0.5.3 by merging Fedora master branch (commit: 674d475)
Resolves: rhbz#1817135

rubygem-pg
* Thu May 26 2022 Jarek Prokop - 1.3.5-1
- Update to pg 1.3.5
Related: rhbz#2063773

[1.2.3-1]
- Update to pg 1.2.3 by merging Fedora master branch (commit: 5db4d26)
Resolves: rhbz#1817135

Related CVEs

CVE-2024-27280

CVE-2024-27281

CVE-2024-27282

Updated Packages

Release/Architecture	Filename	MD5sum	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	ruby-3.1.5-144.module+el9.4.0+90348+c2ef46bf.src.rpm	02fa792bf6d7e5ef66fce661d4158816	-	ol9_aarch64_appstream
	rubygem-mysql2-0.5.4-1.module+el9.1.0+20815+286161bd.src.rpm	4778ee1b37c40c7fdf13d232d664d9b3	-	ol9_aarch64_appstream
	rubygem-mysql2-0.5.4-1.module+el9.1.0+20815+286161bd.src.rpm	4778ee1b37c40c7fdf13d232d664d9b3	-	ol9_aarch64_appstream_developer
	rubygem-pg-1.3.5-1.module+el9.1.0+20815+286161bd.src.rpm	853e25036fbda5620eff76523dae5e3d	-	ol9_aarch64_appstream
	rubygem-pg-1.3.5-1.module+el9.1.0+20815+286161bd.src.rpm	853e25036fbda5620eff76523dae5e3d	-	ol9_aarch64_appstream_developer
	ruby-3.1.5-144.module+el9.4.0+90348+c2ef46bf.aarch64.rpm	dd11ad6ea7367b176818f5c605aaa980	-	ol9_aarch64_appstream
	ruby-bundled-gems-3.1.5-144.module+el9.4.0+90348+c2ef46bf.aarch64.rpm	038b6d41c043a7aad2cbfaf64d3e1111	-	ol9_aarch64_appstream
	ruby-default-gems-3.1.5-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	7a1764717adc7a10aa7e10288d1ae3c0	-	ol9_aarch64_appstream
	ruby-devel-3.1.5-144.module+el9.4.0+90348+c2ef46bf.aarch64.rpm	a9adfd272b1db4222120ddfabb2ddb83	-	ol9_aarch64_appstream
	ruby-doc-3.1.5-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	0389d31a6234fb6c42aa3a00d3af32ee	-	ol9_aarch64_appstream
	ruby-libs-3.1.5-144.module+el9.4.0+90348+c2ef46bf.aarch64.rpm	bd5a4eaed2f4b94962149b6bbf02af9f	-	ol9_aarch64_appstream
	rubygem-bigdecimal-3.1.1-144.module+el9.4.0+90348+c2ef46bf.aarch64.rpm	0c750b958f9fdac89aca9fdf556b4e9f	-	ol9_aarch64_appstream
	rubygem-bundler-2.3.27-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	a9b78e4e4f77ce619a27e5e2d1a4a28b	-	ol9_aarch64_appstream
	rubygem-io-console-0.5.11-144.module+el9.4.0+90348+c2ef46bf.aarch64.rpm	948854badc8c5c0dca2367d83de6c422	-	ol9_aarch64_appstream
	rubygem-irb-1.4.1-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	42878e0f2eb41617a699378cba60008a	-	ol9_aarch64_appstream
	rubygem-json-2.6.1-144.module+el9.4.0+90348+c2ef46bf.aarch64.rpm	c65e10300103d6e9aef6faa80579035c	-	ol9_aarch64_appstream
	rubygem-minitest-5.15.0-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	febc02e907c2236f2d9226717f3e0cea	-	ol9_aarch64_appstream
	rubygem-mysql2-0.5.4-1.module+el9.1.0+20815+286161bd.aarch64.rpm	17794e261781fb20da02cf4a2de4009b	-	ol9_aarch64_appstream
	rubygem-mysql2-0.5.4-1.module+el9.1.0+20815+286161bd.aarch64.rpm	17794e261781fb20da02cf4a2de4009b	-	ol9_aarch64_appstream_developer
	rubygem-mysql2-doc-0.5.4-1.module+el9.1.0+20815+286161bd.noarch.rpm	3db795ed004c63b0e7445a6d59018b34	-	ol9_aarch64_appstream
	rubygem-mysql2-doc-0.5.4-1.module+el9.1.0+20815+286161bd.noarch.rpm	3db795ed004c63b0e7445a6d59018b34	-	ol9_aarch64_appstream_developer
	rubygem-pg-1.3.5-1.module+el9.1.0+20815+286161bd.aarch64.rpm	09a77c176cf1e99c0211dc1467c73099	-	ol9_aarch64_appstream
	rubygem-pg-1.3.5-1.module+el9.1.0+20815+286161bd.aarch64.rpm	09a77c176cf1e99c0211dc1467c73099	-	ol9_aarch64_appstream_developer
	rubygem-pg-doc-1.3.5-1.module+el9.1.0+20815+286161bd.noarch.rpm	301b7817613334df8f887f176c67ae2a	-	ol9_aarch64_appstream
	rubygem-pg-doc-1.3.5-1.module+el9.1.0+20815+286161bd.noarch.rpm	301b7817613334df8f887f176c67ae2a	-	ol9_aarch64_appstream_developer
	rubygem-power_assert-2.0.1-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	90f863d43433218eb619ddd55b516095	-	ol9_aarch64_appstream
	rubygem-psych-4.0.4-144.module+el9.4.0+90348+c2ef46bf.aarch64.rpm	cb2f42c5adc124d6a0f28165cc4d9f9b	-	ol9_aarch64_appstream
	rubygem-rake-13.0.6-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	39af4dccdc37943a97dc9e7d918fe43b	-	ol9_aarch64_appstream
	rubygem-rbs-2.7.0-144.module+el9.4.0+90348+c2ef46bf.aarch64.rpm	f30def0a87451de6438d5253a6205438	-	ol9_aarch64_appstream
	rubygem-rdoc-6.4.1.1-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	8360dd62b25adeb8bf32530f243bac9e	-	ol9_aarch64_appstream
	rubygem-rexml-3.2.5-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	818de5d6f931455f1862dcd6c33f739a	-	ol9_aarch64_appstream
	rubygem-rss-0.2.9-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	936b03244623c1bfe1e3886e6f4b7e4d	-	ol9_aarch64_appstream
	rubygem-test-unit-3.5.3-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	cf3b9f4dc91e91dfa85d41f16952ff93	-	ol9_aarch64_appstream
	rubygem-typeprof-0.21.3-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	3fca26399574cc445b7c5f70e2cf0275	-	ol9_aarch64_appstream
	rubygems-3.3.27-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	f0bd664ae0ca6d0d65f89c5af1c9a4d2	-	ol9_aarch64_appstream
	rubygems-devel-3.3.27-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	5e943f58023cffb584914c4cf82a2da3	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	ruby-3.1.5-144.module+el9.4.0+90348+c2ef46bf.src.rpm	02fa792bf6d7e5ef66fce661d4158816	-	ol9_x86_64_appstream
	rubygem-mysql2-0.5.4-1.module+el9.1.0+20815+286161bd.src.rpm	4778ee1b37c40c7fdf13d232d664d9b3	-	ol9_x86_64_appstream
	rubygem-mysql2-0.5.4-1.module+el9.1.0+20815+286161bd.src.rpm	4778ee1b37c40c7fdf13d232d664d9b3	-	ol9_x86_64_appstream_developer
	rubygem-pg-1.3.5-1.module+el9.1.0+20815+286161bd.src.rpm	853e25036fbda5620eff76523dae5e3d	-	ol9_x86_64_appstream
	rubygem-pg-1.3.5-1.module+el9.1.0+20815+286161bd.src.rpm	853e25036fbda5620eff76523dae5e3d	-	ol9_x86_64_appstream_developer
	ruby-3.1.5-144.module+el9.4.0+90348+c2ef46bf.i686.rpm	36b76405d47415ba1b696ff5c4a8a5ac	-	ol9_x86_64_appstream
	ruby-3.1.5-144.module+el9.4.0+90348+c2ef46bf.x86_64.rpm	750067b1ae67f8faacf463c563ba88d0	-	ol9_x86_64_appstream
	ruby-bundled-gems-3.1.5-144.module+el9.4.0+90348+c2ef46bf.i686.rpm	2f59f103f8ef0370ff8deaa5dbc88410	-	ol9_x86_64_appstream
	ruby-bundled-gems-3.1.5-144.module+el9.4.0+90348+c2ef46bf.x86_64.rpm	51cff90031f8496faf61d42203bb765c	-	ol9_x86_64_appstream
	ruby-default-gems-3.1.5-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	7a1764717adc7a10aa7e10288d1ae3c0	-	ol9_x86_64_appstream
	ruby-devel-3.1.5-144.module+el9.4.0+90348+c2ef46bf.i686.rpm	6951e02b5d08a76d7360a01fd2cffc0b	-	ol9_x86_64_appstream
	ruby-devel-3.1.5-144.module+el9.4.0+90348+c2ef46bf.x86_64.rpm	d442a5b50123e031ffcacecc755d85e3	-	ol9_x86_64_appstream
	ruby-doc-3.1.5-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	0389d31a6234fb6c42aa3a00d3af32ee	-	ol9_x86_64_appstream
	ruby-libs-3.1.5-144.module+el9.4.0+90348+c2ef46bf.i686.rpm	bd1445b93fbb14e186d3afadf06cb232	-	ol9_x86_64_appstream
	ruby-libs-3.1.5-144.module+el9.4.0+90348+c2ef46bf.x86_64.rpm	0f02b9dd3db5f5dace37854e7f014539	-	ol9_x86_64_appstream
	rubygem-bigdecimal-3.1.1-144.module+el9.4.0+90348+c2ef46bf.i686.rpm	80b782d7f9110b4ceab3ee84188afe54	-	ol9_x86_64_appstream
	rubygem-bigdecimal-3.1.1-144.module+el9.4.0+90348+c2ef46bf.x86_64.rpm	94af6f3e14468d1473c188fbc4dba1db	-	ol9_x86_64_appstream
	rubygem-bundler-2.3.27-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	a9b78e4e4f77ce619a27e5e2d1a4a28b	-	ol9_x86_64_appstream
	rubygem-io-console-0.5.11-144.module+el9.4.0+90348+c2ef46bf.i686.rpm	56e8ae0e9df000e2f2ec93c7c20dcab2	-	ol9_x86_64_appstream
	rubygem-io-console-0.5.11-144.module+el9.4.0+90348+c2ef46bf.x86_64.rpm	2e328a45d8aac941bcdb435f14d252af	-	ol9_x86_64_appstream
	rubygem-irb-1.4.1-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	42878e0f2eb41617a699378cba60008a	-	ol9_x86_64_appstream
	rubygem-json-2.6.1-144.module+el9.4.0+90348+c2ef46bf.i686.rpm	c8c376a087841ee50af9880bd4e09489	-	ol9_x86_64_appstream
	rubygem-json-2.6.1-144.module+el9.4.0+90348+c2ef46bf.x86_64.rpm	dc60a59db36b632e2379676120cb6138	-	ol9_x86_64_appstream
	rubygem-minitest-5.15.0-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	febc02e907c2236f2d9226717f3e0cea	-	ol9_x86_64_appstream
	rubygem-mysql2-0.5.4-1.module+el9.1.0+20815+286161bd.x86_64.rpm	beb8edaa59015cad824f392325734689	-	ol9_x86_64_appstream
	rubygem-mysql2-0.5.4-1.module+el9.1.0+20815+286161bd.x86_64.rpm	beb8edaa59015cad824f392325734689	-	ol9_x86_64_appstream_developer
	rubygem-mysql2-doc-0.5.4-1.module+el9.1.0+20815+286161bd.noarch.rpm	3db795ed004c63b0e7445a6d59018b34	-	ol9_x86_64_appstream
	rubygem-mysql2-doc-0.5.4-1.module+el9.1.0+20815+286161bd.noarch.rpm	3db795ed004c63b0e7445a6d59018b34	-	ol9_x86_64_appstream_developer
	rubygem-pg-1.3.5-1.module+el9.1.0+20815+286161bd.x86_64.rpm	66aed05c0f35af188a829ae9bdb6a800	-	ol9_x86_64_appstream
	rubygem-pg-1.3.5-1.module+el9.1.0+20815+286161bd.x86_64.rpm	66aed05c0f35af188a829ae9bdb6a800	-	ol9_x86_64_appstream_developer
	rubygem-pg-doc-1.3.5-1.module+el9.1.0+20815+286161bd.noarch.rpm	301b7817613334df8f887f176c67ae2a	-	ol9_x86_64_appstream
	rubygem-pg-doc-1.3.5-1.module+el9.1.0+20815+286161bd.noarch.rpm	301b7817613334df8f887f176c67ae2a	-	ol9_x86_64_appstream_developer
	rubygem-power_assert-2.0.1-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	90f863d43433218eb619ddd55b516095	-	ol9_x86_64_appstream
	rubygem-psych-4.0.4-144.module+el9.4.0+90348+c2ef46bf.i686.rpm	f90132ad0151312aa6d6e8ba417263f2	-	ol9_x86_64_appstream
	rubygem-psych-4.0.4-144.module+el9.4.0+90348+c2ef46bf.x86_64.rpm	b425c72168f6c4926df089c97e8d5a97	-	ol9_x86_64_appstream
	rubygem-rake-13.0.6-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	39af4dccdc37943a97dc9e7d918fe43b	-	ol9_x86_64_appstream
	rubygem-rbs-2.7.0-144.module+el9.4.0+90348+c2ef46bf.i686.rpm	719e28ef4a54a2c9f856429c161f31f3	-	ol9_x86_64_appstream
	rubygem-rbs-2.7.0-144.module+el9.4.0+90348+c2ef46bf.x86_64.rpm	9427258f044794952ed5faac47932f7c	-	ol9_x86_64_appstream
	rubygem-rdoc-6.4.1.1-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	8360dd62b25adeb8bf32530f243bac9e	-	ol9_x86_64_appstream
	rubygem-rexml-3.2.5-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	818de5d6f931455f1862dcd6c33f739a	-	ol9_x86_64_appstream
	rubygem-rss-0.2.9-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	936b03244623c1bfe1e3886e6f4b7e4d	-	ol9_x86_64_appstream
	rubygem-test-unit-3.5.3-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	cf3b9f4dc91e91dfa85d41f16952ff93	-	ol9_x86_64_appstream
	rubygem-typeprof-0.21.3-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	3fca26399574cc445b7c5f70e2cf0275	-	ol9_x86_64_appstream
	rubygems-3.3.27-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	f0bd664ae0ca6d0d65f89c5af1c9a4d2	-	ol9_x86_64_appstream
	rubygems-devel-3.3.27-144.module+el9.4.0+90348+c2ef46bf.noarch.rpm	5e943f58023cffb584914c4cf82a2da3	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691