[ALSA-2026:33540] Important: ruby4.0 security update
Type:
security
Severity:
important
Release date:
2026-07-01
Description:
Ruby is the interpreted scripting language for quick and easy object-oriented programming. It has many features to process text files and to do system management tasks (as in Perl). It is simple, straight-forward, and extensible. Security Fix(es): * ruby: net-imap: Net::IMAP: Denial of Service via crafted IMAP responses (CVE-2026-42245) * ruby/net-imap: ruby: Net::IMAP: IMAP Command Injection via Symbol Arguments (CVE-2026-42258) * net-imap: ruby: Net::IMAP: Information disclosure via man-in-the-middle attack bypassing TLS (CVE-2026-42246) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 ruby4.0-rubygem-mysql2-0.5.7-35.el10_2.aarch64.rpm 1f1dcbcea23baa3f43d9c7a9c1c2c3725de5abca54d7b386b4cc20cbffb9046c
aarch64 ruby4.0-devel-4.0.3-35.el10_2.aarch64.rpm 2477f21557b3bd3955ddd4c0ab82143ed8692af1226110295997d973534f8bc3
aarch64 ruby4.0-rubygem-pg-1.6.3-35.el10_2.aarch64.rpm 507bc5a84cc7351513ec0265b6eed013a88e4c94f7b5856f5b612436d8df35f6
aarch64 ruby4.0-4.0.3-35.el10_2.aarch64.rpm f2ef036db640cd5865558e59648ea8357c5a2297b194f859bde220134bf5c62b
noarch ruby4.0-doc-4.0.3-35.el10_2.noarch.rpm 9c4dc402137050f3d244fd8c91b09222b0708196cddb3636d256ab4717d5ff82
ppc64le ruby4.0-rubygem-mysql2-0.5.7-35.el10_2.ppc64le.rpm 1f2530778c2a87fb8f3abaef17d829459adf5d601d51e8bc52443a42d761cda6
ppc64le ruby4.0-rubygem-pg-1.6.3-35.el10_2.ppc64le.rpm 4be3cc129130cd161ff9fd7dfd69d7b377b6c88fc71ea7535b529500499bb96c
ppc64le ruby4.0-devel-4.0.3-35.el10_2.ppc64le.rpm 69cc223f4b08d63365b3b16e2ccec6c31c88058fdaa498aa0fbf3ad0f933d3a8
ppc64le ruby4.0-4.0.3-35.el10_2.ppc64le.rpm f1f818e84ced4d41547c81bcefcdcd46d5fe866c23577721ebf5415629ca2fd0
s390x ruby4.0-devel-4.0.3-35.el10_2.s390x.rpm b4e84a1a0ac3589d11c53b0732e5ad162ea0ca8b9d8adab3cdc92602fcc19e75
s390x ruby4.0-4.0.3-35.el10_2.s390x.rpm d1b0ee0e5b7f237ec76bbd5cfaba7849cbb62413857e27d16fa3ceaba989804d
s390x ruby4.0-rubygem-mysql2-0.5.7-35.el10_2.s390x.rpm e7f032d0701fffeb92419f3091ed9535f47101686cd00660ecac5d39eba54f4a
s390x ruby4.0-rubygem-pg-1.6.3-35.el10_2.s390x.rpm ec2a2fa28df85d9a0b4840cd19af9af937615f559460e9e198f849cddc9b2b02
x86_64 ruby4.0-rubygem-pg-1.6.3-35.el10_2.x86_64.rpm 2c35976b7beba21288362fdf1f1198596feda8989ed3bdca19bc7c0c7fbcf023
x86_64 ruby4.0-rubygem-mysql2-0.5.7-35.el10_2.x86_64.rpm 2ec205cb69349ec956c38fda4cf71f148cd9ad0eb3041a55b32bee47f46d57ce
x86_64 ruby4.0-4.0.3-35.el10_2.x86_64.rpm b99cf267db54db3c95cb5687a55a0a1c11db389a6872b9d7c6750974341a575a
x86_64 ruby4.0-devel-4.0.3-35.el10_2.x86_64.rpm dd32725a3448911badbed4c6ee228d95f4041720b13876f8a325413fdb239b75
x86_64_v2 ruby4.0-devel-4.0.3-35.el10_2.x86_64_v2.rpm 438c6d829ff8b81f0fabefbc80ea3cbb56e1c540b8a7c565f62d7fafe703d70a
x86_64_v2 ruby4.0-rubygem-pg-1.6.3-35.el10_2.x86_64_v2.rpm 7374ca8aaeb8bcc851ca7b24ac4cd7ec356dd68afacc9e7acef5ea6f9f715d2a
x86_64_v2 ruby4.0-4.0.3-35.el10_2.x86_64_v2.rpm a1ba6fa724f91eceec3596f29f004befad4497ba71dfb2b9c35759462e26852d
x86_64_v2 ruby4.0-rubygem-mysql2-0.5.7-35.el10_2.x86_64_v2.rpm f3a29b92372f2ec396217d8487e726bc0ee4c36cb90eaa22148e12f28ca9775d
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.