Oracle Errata System
Oracle Linux
5.3
2021-09-09T12:47:52
ELSA-2011-0909: ruby security update (MODERATE)
Oracle Linux 5
[1.8.5-19.el5_6.1]
- Address CVE-2011-1004 'Symlink race condition by removing directory trees in
fileutils module'
* ruby-1.8.7-CVE-2011-1004.patch
- Address CVE-2011-1005 'Untrusted codes able to modify arbitrary strings'
* ruby-1.8.7-CVE-2011-1005.patch
- Address CVE-2011-0188 'memory corruption in BigDecimal on 64bit platforms'
* ruby-1.8.7-CVE-2011-0188.patch
- Address CVE-CVE-2010-0541 'Ruby WEBrick javascript injection flaw'
* ruby-1.8.7-CVE-2010-0541.patch
- Address CVE-CVE-2009-4492 'ruby WEBrick log escape sequence'
* ruby-1.8.6-CVE-2009-4492.patch
- Resolves: rhbz#709957
MODERATE
Copyright 2011 Oracle, Inc.
CVE-2009-4492
CVE-2010-0541
CVE-2011-0188
CVE-2011-1004
CVE-2011-1005
ruby-docs
ruby-devel
ruby-rdoc
ruby
ruby-irb
oraclelinux-release
ruby-tcltk
ruby-mode
ruby-ri
ruby-libs
66ced3de1e5e0159
^5
ia64
0:1.8.5-19.el5_6.1
x86_64
i386