Oracle Errata System
Oracle Linux
5.11
2022-04-27T06:40:08
ELSA-2022-0672-1: ruby:2.5 security update (MODERATE)
Oracle Linux 8
ruby
[2.5.9-109.0.1]
- Rebuild with a dependency containing fix for Orabug: 33921593
[2.5.9-109]
- Properly fix command injection vulnerability in Rdoc.
Related: CVE-2021-31799
[2.5.9-108]
- Fix command injection vulnerability in RDoc.
Resolves: CVE-2021-31799
- Fix StartTLS stripping vulnerability in Net::IMAP
Resolves: CVE-2021-32066
- Fix FTP PASV command response can cause Net::FTP to connect to arbitrary host.
Resolves: CVE-2021-31810
MODERATE
Copyright 2022 Oracle, Inc.
CVE-2021-31799
CVE-2021-32066
CVE-2021-31810
ruby-doc
rubygem-minitest
rubygem-bson-doc
ruby-irb
rubygem-openssl
rubygem-net-telnet
rubygem-rake
rubygem-mongo-doc
rubygem-io-console
rubygem-mysql2
rubygem-xmlrpc
rubygem-bundler
rubygem-json
ruby-libs
rubygem-power_assert
rubygem-bundler-doc
rubygem-pg
rubygems
rubygem-pg-doc
ruby-devel
rubygem-test-unit
rubygem-bigdecimal
ruby
rubygem-psych
rubygem-bson
oraclelinux-release
rubygem-rdoc
rubygem-abrt
rubygem-did_you_mean
rubygem-mongo
rubygem-abrt-doc
rubygem-mysql2-doc
rubygems-devel
/etc/dnf/modules.d/ruby.module
\[ruby\][\w\W]*
1
82562ea9ad986da3
\nstream\s*=\s*2\.5\b[\w\W]*\nstate\s*=\s*(enabled|1|true)|\nstate\s*=\s*(enabled|1|true)[\w\W]*\nstream\s*=\s*2\.5\b
^8
aarch64
0:2.5.9-109.0.1.module+el8.5.0+20513+af7be134
0:0.3.0-4.module+el8.3.0+7756+e45777e9
0:1.3.4-109.0.1.module+el8.5.0+20513+af7be134
0:4.3.0-2.module+el8.3.0+7756+e45777e9
0:1.16.1-4.module+el8.5.0+20497+d0a7b862
0:1.2.0-109.0.1.module+el8.5.0+20513+af7be134
0:0.4.6-109.0.1.module+el8.5.0+20513+af7be134
0:2.1.0-109.0.1.module+el8.5.0+20513+af7be134
0:5.10.3-109.0.1.module+el8.5.0+20513+af7be134
0:2.5.1-2.module+el8.3.0+7756+e45777e9
0:0.4.10-4.module+el8.3.0+7756+e45777e9
0:0.1.1-109.0.1.module+el8.5.0+20513+af7be134
0:2.1.2-109.0.1.module+el8.5.0+20513+af7be134
0:1.0.0-2.module+el8.3.0+7756+e45777e9
0:1.1.1-109.0.1.module+el8.5.0+20513+af7be134
0:3.0.2-109.0.1.module+el8.5.0+20513+af7be134
0:12.3.3-109.0.1.module+el8.5.0+20513+af7be134
0:6.0.1.1-109.0.1.module+el8.5.0+20513+af7be134
0:3.2.7-109.0.1.module+el8.5.0+20513+af7be134
0:0.3.0-109.0.1.module+el8.5.0+20513+af7be134
0:2.7.6.3-109.0.1.module+el8.5.0+20513+af7be134
x86_64