Oracle Errata System
Oracle Linux
5.11
2024-09-21T19:03:45
ELSA-2013-0612: ruby security update (MODERATE)
Oracle Linux 6
[1.8.7.352-10]
- escaping vulnerability about Exception#to_s / NameError#to_s
* ruby-1.8.7-p371-CVE-2012-4481.patch
- Related: rhbz#915379
[1.8.7.352-9]
- Fix regression introduced by fix for entity expansion DOS vulnerability
in REXML (https://bugs.ruby-lang.org/issues/7961)
* ruby-2.0.0-add-missing-rexml-require.patch
- Related: rhbz#915379
[1.8.7.352-8]
- Addresses entity expansion DoS vulnerability in REXML.
* ruby-2.0.0-entity-expansion-DoS-vulnerability-in-REXML.patch
- Resolves: rhbz#915379
MODERATE
Copyright 2013 Oracle, Inc.
CVE-2012-4481
CVE-2013-1821
cpe:/a:oracle:linux:6::latest_archive
cpe:/a:oracle:linux:6:4:patch
ruby-docs
ruby-devel
ruby-rdoc
ruby
ruby-irb
oraclelinux-release
ruby-static
ruby-tcltk
ruby-ri
ruby-libs
72f97b74ec551f03
^6
x86_64
0:1.8.7.352-10.el6_4
i686