ELSA-2026-18030

ULN >
Oracle Linux Errata repository >
ELSA-2026-18030

ELSA-2026-18030 - ruby:3.3 security update

Type:	SECURITY
Impact:	IMPORTANT
Release Date:	2026-05-19

Description

ruby
[3.3.10-6]
- Fix arbitrary code execution via deserialization bypass in ERB. (CVE-2026-41316)
Resolves: RHEL-171255

[3.3.10-5]
- Upgrade to Ruby 3.3.10.
Resolves: RHEL-127912
- Fix possible denial of service in resolv gem (CVE-2025-24294)
- Fix URI Credential Leakage Bypass previous fixes. (CVE-2025-61594)
- Fix REXML denial of service. (CVE-2025-58767)
Resolves: RHEL-122015

[3.3.8-4]
- Upgrade to Ruby 3.3.8.
Resolves: RHEL-68631
- Fix Net::IMAP vulnerable to possible DoS by memory exhaustion. (CVE-2025-25186)
- Fix Denial of Service in CGI::Cookie.parse. (CVE-2025-27219)
Resolves: RHEL-86109
- Fix userinfo leakage in URI#join, URI#merge and URI#+. (CVE-2025-27221)

[3.3.5-3]
- Upgrade to Ruby 3.3.5
Resolves: RHEL-55411
- Fix DoS vulnerability in rexml.
(CVE-2024-39908)
(CVE-2024-41946)
(CVE-2024-43398)
Resolves: RHEL-57575
Resolves: RHEL-57572
Resolves: RHEL-57068
- Fix REXML DoS when parsing an XML having many specific characters such as
whitespace character, >] and ]>.
(CVE-2024-41123)
Resolves: RHEL-57569
- Fix incorrect symlink for rubygem-irb's library.
Resolves: RHEL-42646

[3.3.1-2]
- Upgrade to Ruby 3.3.1.
Resolves: RHEL-33976
- Fix buffer overread vulnerability in StringIO.
(CVE-2024-27280)
Resolves: RHEL-34130
- Fix RCE vulnerability with .rdoc_options in RDoc.
(CVE-2024-27281)
Resolves: RHEL-34122
- Fix Arbitrary memory address read vulnerability with Regex search.
(CVE-2024-27282)
Resolves: RHEL-33872

rubygem-mysql2
[0.5.5-3]
- Disable tests on the 32bit platforms ix86.
Related: RHEL-80222

[0.5.5-2]
- Adapt tests to openssl 3.2
Resolves: RHEL-80222

[0.5.5-1]
- Upgrade to mysql2 0.5.5.
Related: RHEL-17089

rubygem-pg
[-1.5.4-2]
- Fix encoding issue in spec suite.
Resolves: RHEL-159200

Related CVEs

CVE-2026-41316

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label

Oracle Linux 9 (aarch64)	ruby-3.3.10-6.module+el9.7.0+90894+66578cbb.src.rpm	918194459efb7600db3c9c34f398e5d87012c70274291b7ced1e95f595ac1f09	-	ol9_aarch64_appstream
	rubygem-mysql2-0.5.5-3.module+el9.7.0+90894+66578cbb.src.rpm	711b4237d58420d040020d43d32b52b6e2fdeb0eef6054f7dd30073ff6baff00	-	ol9_aarch64_appstream
	rubygem-pg-1.5.4-2.module+el9.7.0+90894+66578cbb.src.rpm	d0ae9f55a956778d5d97250b9ec6fc475442b13acaf4217e0594a1b9dec86ec1	-	ol9_aarch64_appstream
	ruby-3.3.10-6.module+el9.7.0+90894+66578cbb.aarch64.rpm	039fd550f26a4806fac70397bed1f9839034bde36732212e0ad26d1bc6392d08	-	ol9_aarch64_appstream
	ruby-bundled-gems-3.3.10-6.module+el9.7.0+90894+66578cbb.aarch64.rpm	6e73262e00e5c74cefd70ed68f6ff0af40428686fec175d9ddfe2c45466a0b65	-	ol9_aarch64_appstream
	ruby-default-gems-3.3.10-6.module+el9.7.0+90894+66578cbb.noarch.rpm	de4c75f07b95b70d87992de124dd2ec7c2f7a4225f825884562f9f7f50998343	-	ol9_aarch64_appstream
	ruby-devel-3.3.10-6.module+el9.7.0+90894+66578cbb.aarch64.rpm	7c4ba0b4e3ebb6a238c61caa49f4dc2e9bf8b8d05d5e41adf809ab5d0d13e4cd	-	ol9_aarch64_appstream
	ruby-doc-3.3.10-6.module+el9.7.0+90894+66578cbb.noarch.rpm	b2179d3567c94b9d56876fe671dcff5d691a23026f9b5fcdcdbf5c0016ccb533	-	ol9_aarch64_appstream
	ruby-libs-3.3.10-6.module+el9.7.0+90894+66578cbb.aarch64.rpm	626ebe0c17dde2f9e3f3347adfa5e0e303eed131812c9ee34116583395810dde	-	ol9_aarch64_appstream
	rubygem-bigdecimal-3.1.5-6.module+el9.7.0+90894+66578cbb.aarch64.rpm	41226baa10fc1868f07f067a69e6decc48c4a5b14ca082625b7d425ac9983953	-	ol9_aarch64_appstream
	rubygem-bundler-2.5.22-6.module+el9.7.0+90894+66578cbb.noarch.rpm	281aa797ee540c66063e7b381ff750171be51956d0dcb162e26aa22192d8c585	-	ol9_aarch64_appstream
	rubygem-io-console-0.7.1-6.module+el9.7.0+90894+66578cbb.aarch64.rpm	ac04cb5c55d526cb034e8d503e4a88eb67544261289122abe8cd6e75441b11f7	-	ol9_aarch64_appstream
	rubygem-irb-1.13.1-6.module+el9.7.0+90894+66578cbb.noarch.rpm	7296b7057d2441e6faea8d7f57136027092cae0c6abadcc6c4b144936e583a29	-	ol9_aarch64_appstream
	rubygem-json-2.7.2-6.module+el9.7.0+90894+66578cbb.aarch64.rpm	b3a96ac7d278687a7933907abaad99944a98144f7a09f42ea95ca57b18dc6fb3	-	ol9_aarch64_appstream
	rubygem-minitest-5.20.0-6.module+el9.7.0+90894+66578cbb.noarch.rpm	c547b53a30447be6cc6a50152ae6907b2d251dbc712aa565c8e3d893befbe4a2	-	ol9_aarch64_appstream
	rubygem-mysql2-0.5.5-3.module+el9.7.0+90894+66578cbb.aarch64.rpm	342c708a7d5ef1aa2c59a633f2e01f21d3c80edf65035933477d276eff3e1983	-	ol9_aarch64_appstream
	rubygem-mysql2-doc-0.5.5-3.module+el9.7.0+90894+66578cbb.noarch.rpm	983ab63e39496814bdf2eeeec60b1b724fb98da78507c4aba990c3bb00c511dd	-	ol9_aarch64_appstream
	rubygem-pg-1.5.4-2.module+el9.7.0+90894+66578cbb.aarch64.rpm	436c1ed0aad50fcbb33b772b1d39272a6611a5611ec4f1c26281c54c34e74387	-	ol9_aarch64_appstream
	rubygem-pg-doc-1.5.4-2.module+el9.7.0+90894+66578cbb.noarch.rpm	4dece6b3db398f0b01d5af7fb7aae362be778db3a13399b2c0f961983eb1565e	-	ol9_aarch64_appstream
	rubygem-power_assert-2.0.3-6.module+el9.7.0+90894+66578cbb.noarch.rpm	08a1e083e11c9e4d934326b9fc074d637eb437bb302e51ebeed18e8c18d922b0	-	ol9_aarch64_appstream
	rubygem-psych-5.1.2-6.module+el9.7.0+90894+66578cbb.aarch64.rpm	1f1468ce50193a4a3e73dfe8163ef403e3e92f351b449597a7c923d62698ecb0	-	ol9_aarch64_appstream
	rubygem-racc-1.7.3-6.module+el9.7.0+90894+66578cbb.aarch64.rpm	363a44654b17c40dc29090ec8e469ef02128783807a2952fbb09d1c0ce8c2ece	-	ol9_aarch64_appstream
	rubygem-rake-13.1.0-6.module+el9.7.0+90894+66578cbb.noarch.rpm	8cc8adc95734d0c461e9277a7e51612cadfb8221408bfab9b099bf05cccac77c	-	ol9_aarch64_appstream
	rubygem-rbs-3.4.0-6.module+el9.7.0+90894+66578cbb.aarch64.rpm	8b82be34bbcfc6c847cdd0d29857807a67e0b2dab776be0e9e9a9bd3b530586f	-	ol9_aarch64_appstream
	rubygem-rdoc-6.6.3.1-6.module+el9.7.0+90894+66578cbb.noarch.rpm	0ce4004e6d52a4c5260b2fd1918341bfd58f9f3146bfdac3f6544e9fb4794338	-	ol9_aarch64_appstream
	rubygem-rexml-3.4.4-6.module+el9.7.0+90894+66578cbb.noarch.rpm	177be6c4da0b4b841bc25d1f7ddf0ae14e8b0e331223fd31a4ab3423226a36cd	-	ol9_aarch64_appstream
	rubygem-rss-0.3.1-6.module+el9.7.0+90894+66578cbb.noarch.rpm	5defe1145a7e07767fca6d0aafa2b90f0e9e5f37270c214607c08a3dea45fe93	-	ol9_aarch64_appstream
	rubygem-test-unit-3.6.1-6.module+el9.7.0+90894+66578cbb.noarch.rpm	091f0f7588ef5f836c3760d28af271c2376f3201f1e6fe4674f72df309944273	-	ol9_aarch64_appstream
	rubygem-typeprof-0.21.9-6.module+el9.7.0+90894+66578cbb.noarch.rpm	0f13320fadb95903c6d33cfc8cc4ae8ddd94b59e9852b30c1009ef2831f55e7f	-	ol9_aarch64_appstream
	rubygems-3.5.22-6.module+el9.7.0+90894+66578cbb.noarch.rpm	3f49cc69851b7d472091a46b111be012ffe9613a746f5d6c34f52ede29b6f3c2	-	ol9_aarch64_appstream
	rubygems-devel-3.5.22-6.module+el9.7.0+90894+66578cbb.noarch.rpm	39058fadd9bbfc71e7bc754e99fbd5d1d3b28a42d5baac394164de6469690dec	-	ol9_aarch64_appstream

Oracle Linux 9 (x86_64)	ruby-3.3.10-6.module+el9.7.0+90894+66578cbb.src.rpm	918194459efb7600db3c9c34f398e5d87012c70274291b7ced1e95f595ac1f09	-	ol9_x86_64_appstream
	rubygem-mysql2-0.5.5-3.module+el9.7.0+90894+66578cbb.src.rpm	711b4237d58420d040020d43d32b52b6e2fdeb0eef6054f7dd30073ff6baff00	-	ol9_x86_64_appstream
	rubygem-pg-1.5.4-2.module+el9.7.0+90894+66578cbb.src.rpm	d0ae9f55a956778d5d97250b9ec6fc475442b13acaf4217e0594a1b9dec86ec1	-	ol9_x86_64_appstream
	ruby-3.3.10-6.module+el9.7.0+90894+66578cbb.i686.rpm	2f4b93acb79a2303dad8edc5a384037f2d1012047e2b024b39b94358d863c2aa	-	ol9_x86_64_appstream
	ruby-3.3.10-6.module+el9.7.0+90894+66578cbb.x86_64.rpm	24f4fa8991dd0e68be81e8b8c082d8e4103c30fd6fe670f2cdfe334851625ce1	-	ol9_x86_64_appstream
	ruby-bundled-gems-3.3.10-6.module+el9.7.0+90894+66578cbb.i686.rpm	e08fa356e34fa073ee8576b6d65bd8721e4e5b076046c223146b8923a08c66e4	-	ol9_x86_64_appstream
	ruby-bundled-gems-3.3.10-6.module+el9.7.0+90894+66578cbb.x86_64.rpm	ff65e70083c7a5c96ed45b776fa585fa18c3ff3040f78ab5130ef441b0cc9b05	-	ol9_x86_64_appstream
	ruby-default-gems-3.3.10-6.module+el9.7.0+90894+66578cbb.noarch.rpm	de4c75f07b95b70d87992de124dd2ec7c2f7a4225f825884562f9f7f50998343	-	ol9_x86_64_appstream
	ruby-devel-3.3.10-6.module+el9.7.0+90894+66578cbb.i686.rpm	87572fb7a1bbd8a7cb6f8b1b11583b0cd01c1a054ec3d6cf0811770691531c32	-	ol9_x86_64_appstream
	ruby-devel-3.3.10-6.module+el9.7.0+90894+66578cbb.x86_64.rpm	465dabec1b9497e534f1667f5991549af3326dee00ce04b346ab14a539a2ff86	-	ol9_x86_64_appstream
	ruby-doc-3.3.10-6.module+el9.7.0+90894+66578cbb.noarch.rpm	b2179d3567c94b9d56876fe671dcff5d691a23026f9b5fcdcdbf5c0016ccb533	-	ol9_x86_64_appstream
	ruby-libs-3.3.10-6.module+el9.7.0+90894+66578cbb.i686.rpm	f4ab20c6a2b6643e6614a21ee16a0bfe3b8ab349d8ea805a0a9ab83f5c317096	-	ol9_x86_64_appstream
	ruby-libs-3.3.10-6.module+el9.7.0+90894+66578cbb.x86_64.rpm	e3c7883bfe316fbecca595975ca676c44f15ba9a45ebb92de2756406bcc2f747	-	ol9_x86_64_appstream
	rubygem-bigdecimal-3.1.5-6.module+el9.7.0+90894+66578cbb.i686.rpm	f15b1d4e6351b379bfeeefbbeec4c5a1f5f078ee6fc63c45a45ad2b74485451a	-	ol9_x86_64_appstream
	rubygem-bigdecimal-3.1.5-6.module+el9.7.0+90894+66578cbb.x86_64.rpm	9e38f57484f998f484aa2b6f6a46779346076773af3905be378ed907541be162	-	ol9_x86_64_appstream
	rubygem-bundler-2.5.22-6.module+el9.7.0+90894+66578cbb.noarch.rpm	281aa797ee540c66063e7b381ff750171be51956d0dcb162e26aa22192d8c585	-	ol9_x86_64_appstream
	rubygem-io-console-0.7.1-6.module+el9.7.0+90894+66578cbb.i686.rpm	30b917d877575c55dbca1a4dbb38364aa32f9ffc2fe04892c0d2d6d80ac05803	-	ol9_x86_64_appstream
	rubygem-io-console-0.7.1-6.module+el9.7.0+90894+66578cbb.x86_64.rpm	51a0ef6adc10146fa9a83c272f4869f9dd00a8b7c8f085acbc292176171f3747	-	ol9_x86_64_appstream
	rubygem-irb-1.13.1-6.module+el9.7.0+90894+66578cbb.noarch.rpm	7296b7057d2441e6faea8d7f57136027092cae0c6abadcc6c4b144936e583a29	-	ol9_x86_64_appstream
	rubygem-json-2.7.2-6.module+el9.7.0+90894+66578cbb.i686.rpm	b75acbb5686555713dec4eb2e96467965929742784b15520f76398a4089b2ebe	-	ol9_x86_64_appstream
	rubygem-json-2.7.2-6.module+el9.7.0+90894+66578cbb.x86_64.rpm	5536b6e16e3be14ec1a16cea522ab20b6b1232a578d7b068c4d4f0a19a737eec	-	ol9_x86_64_appstream
	rubygem-minitest-5.20.0-6.module+el9.7.0+90894+66578cbb.noarch.rpm	c547b53a30447be6cc6a50152ae6907b2d251dbc712aa565c8e3d893befbe4a2	-	ol9_x86_64_appstream
	rubygem-mysql2-0.5.5-3.module+el9.7.0+90894+66578cbb.x86_64.rpm	63ee0ddd301dcf6e37db1a0d1b138e5530bc95c1914adaa38f5ea3b0088203ac	-	ol9_x86_64_appstream
	rubygem-mysql2-doc-0.5.5-3.module+el9.7.0+90894+66578cbb.noarch.rpm	983ab63e39496814bdf2eeeec60b1b724fb98da78507c4aba990c3bb00c511dd	-	ol9_x86_64_appstream
	rubygem-pg-1.5.4-2.module+el9.7.0+90894+66578cbb.x86_64.rpm	e18d69dcfc14897f9698e64123d26f9d0dae3dd1bef7707167654f70041f0eb7	-	ol9_x86_64_appstream
	rubygem-pg-doc-1.5.4-2.module+el9.7.0+90894+66578cbb.noarch.rpm	4dece6b3db398f0b01d5af7fb7aae362be778db3a13399b2c0f961983eb1565e	-	ol9_x86_64_appstream
	rubygem-power_assert-2.0.3-6.module+el9.7.0+90894+66578cbb.noarch.rpm	08a1e083e11c9e4d934326b9fc074d637eb437bb302e51ebeed18e8c18d922b0	-	ol9_x86_64_appstream
	rubygem-psych-5.1.2-6.module+el9.7.0+90894+66578cbb.i686.rpm	482a146da6d76b439fce425710cf79f54a6dcf3037765a75c6fbd7966259a1d6	-	ol9_x86_64_appstream
	rubygem-psych-5.1.2-6.module+el9.7.0+90894+66578cbb.x86_64.rpm	d1a75ce1a3eb8c61d1ff6b28125c12c305bb377d34d899cc50d4ccacc40b7f3a	-	ol9_x86_64_appstream
	rubygem-racc-1.7.3-6.module+el9.7.0+90894+66578cbb.i686.rpm	60d9fab33a7fc0c49ba71775c690cb4891333cdbce34154be6f1b5eeb464d084	-	ol9_x86_64_appstream
	rubygem-racc-1.7.3-6.module+el9.7.0+90894+66578cbb.x86_64.rpm	eaf35798464e2f80574ac8d1e44257254e1885ae4b498253aa268a5771cfb2e4	-	ol9_x86_64_appstream
	rubygem-rake-13.1.0-6.module+el9.7.0+90894+66578cbb.noarch.rpm	8cc8adc95734d0c461e9277a7e51612cadfb8221408bfab9b099bf05cccac77c	-	ol9_x86_64_appstream
	rubygem-rbs-3.4.0-6.module+el9.7.0+90894+66578cbb.i686.rpm	dccdf8066854a7388d08a97fa85be4c9a4ef0a8f5624132a7ee7c164c8d9eb45	-	ol9_x86_64_appstream
	rubygem-rbs-3.4.0-6.module+el9.7.0+90894+66578cbb.x86_64.rpm	29f1000437b52490d164334fb7667d9f7e85646e720e844e5ea0267c7ad50bf9	-	ol9_x86_64_appstream
	rubygem-rdoc-6.6.3.1-6.module+el9.7.0+90894+66578cbb.noarch.rpm	0ce4004e6d52a4c5260b2fd1918341bfd58f9f3146bfdac3f6544e9fb4794338	-	ol9_x86_64_appstream
	rubygem-rexml-3.4.4-6.module+el9.7.0+90894+66578cbb.noarch.rpm	177be6c4da0b4b841bc25d1f7ddf0ae14e8b0e331223fd31a4ab3423226a36cd	-	ol9_x86_64_appstream
	rubygem-rss-0.3.1-6.module+el9.7.0+90894+66578cbb.noarch.rpm	5defe1145a7e07767fca6d0aafa2b90f0e9e5f37270c214607c08a3dea45fe93	-	ol9_x86_64_appstream
	rubygem-test-unit-3.6.1-6.module+el9.7.0+90894+66578cbb.noarch.rpm	091f0f7588ef5f836c3760d28af271c2376f3201f1e6fe4674f72df309944273	-	ol9_x86_64_appstream
	rubygem-typeprof-0.21.9-6.module+el9.7.0+90894+66578cbb.noarch.rpm	0f13320fadb95903c6d33cfc8cc4ae8ddd94b59e9852b30c1009ef2831f55e7f	-	ol9_x86_64_appstream
	rubygems-3.5.22-6.module+el9.7.0+90894+66578cbb.noarch.rpm	3f49cc69851b7d472091a46b111be012ffe9613a746f5d6c34f52ede29b6f3c2	-	ol9_x86_64_appstream
	rubygems-devel-3.5.22-6.module+el9.7.0+90894+66578cbb.noarch.rpm	39058fadd9bbfc71e7bc754e99fbd5d1d3b28a42d5baac394164de6469690dec	-	ol9_x86_64_appstream

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team

Technical information

Oracle Linux Support

Connect

Contact Us

Global contacts
Oracle 1-800-633-0691