ALSA-2021:2584

[ALSA-2021:2584] Moderate: ruby:2.7 security, bug fix, and enhancement update

Type:

security

Severity:

moderate

Release date:

2023-09-15

Description:

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.

The following packages have been upgraded to a later upstream version: ruby (2.7.3). (BZ#1951999)

Security Fix(es):

* ruby: Potential HTTP request smuggling in WEBrick (CVE-2020-25613)

* ruby: XML round-trip vulnerability in REXML (CVE-2021-28965)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Bug Fix(es):

* Resolv::DNS: ruby:2.7/ruby: timeouts if multiple IPv6 name servers are given and address contains leading zero [almalinux-8] (BZ#1952000)

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	rubygem-mysql2-0.5.3-1.module_el8.4.0+2399+4e3a532a.aarch64.rpm	2edcadf2289b75b12f926d575c8adefa9857e504c0a0991301c69f2908a4b09b
aarch64	rubygem-bson-4.8.1-1.module_el8.4.0+2399+4e3a532a.aarch64.rpm	333758e298841ffdb198bafeb3bfa18257da69fd1c32bab982cbcac2b767cf48
aarch64	rubygem-pg-1.2.3-1.module_el8.4.0+2399+4e3a532a.aarch64.rpm	bd0918ea2953f6fbf020676c9e59c1afba82f3c63618b48df2461e82ace1600c
noarch	rubygem-mongo-2.11.3-1.module_el8.3.0+6147+d0dfc1e4.noarch.rpm	29a67cc70b1c85be991d0ce26ed5bb85e4b3fb0d76f68a7162b6cd8c010c8107
noarch	rubygem-mongo-doc-2.11.3-1.module_el8.3.0+6147+d0dfc1e4.noarch.rpm	2d6e54bc38c5e81f043f94ce37b0731f4bf61adc0b556732c2a9ab80afb1a25a
noarch	rubygem-mysql2-doc-0.5.3-1.module_el8.5.0+118+1ab773e1.noarch.rpm	419c4d3967fde63ef63c5957b866b78e23369020da164a8cfcfc4436f2500e0c
noarch	rubygem-abrt-0.4.0-1.module_el8.4.0+2399+4e3a532a.noarch.rpm	4fe4983dbfdd0b2c2cccb4efe6f4172dedc70b050851c9a66468f652dd176dd4
noarch	rubygem-mysql2-doc-0.5.3-1.module_el8.3.0+6147+d0dfc1e4.noarch.rpm	68262161a3dd55b3ca9751fd08163549912a65e4834fe4475b53a39eac3a4979
noarch	rubygem-pg-doc-1.2.3-1.module_el8.3.0+6147+d0dfc1e4.noarch.rpm	832d6a8b61314ab7cbf3cacb2315ee02c457becc03299dfe4a8a3ea22129a052
noarch	rubygem-abrt-0.4.0-1.module_el8.3.0+6147+d0dfc1e4.noarch.rpm	8cf5044f5988e45619e64731f4b83f6be4f619e4d61b31e41f96015c90b9ca30
noarch	rubygem-abrt-doc-0.4.0-1.module_el8.5.0+118+1ab773e1.noarch.rpm	a51b72daa89a6e972afab50bd546de36fa974ae959d433d5338edb626f8df5bb
noarch	rubygem-bson-doc-4.8.1-1.module_el8.3.0+6147+d0dfc1e4.noarch.rpm	b18e8b222fd5eac7be3807f897bd0a4148b7f8fb6ddf2f4c242b51cd0b6f21f6
noarch	rubygem-mysql2-doc-0.5.3-1.module_el8.4.0+2399+4e3a532a.noarch.rpm	b4a26ede96ee4b42f2587b9a738b7f6eecc7c4aba9fbd79b25a0bb29a3a5f757
noarch	rubygem-pg-doc-1.2.3-1.module_el8.5.0+118+1ab773e1.noarch.rpm	bdc54fc3fb07189ec22c0629bb2d7b74688080e0299a6719587464b9bee59dea
noarch	rubygem-pg-doc-1.2.3-1.module_el8.4.0+2399+4e3a532a.noarch.rpm	bf5ab88cebb180fb5d27342c517ff62e48903aae8ee7086d68932b72fcd000d5
noarch	rubygem-abrt-doc-0.4.0-1.module_el8.3.0+6147+d0dfc1e4.noarch.rpm	c1c9d43b37c897a6cc1ad5e1405639f1657720f8fa3ac2b0bd67878b9786576b
noarch	rubygem-abrt-doc-0.4.0-1.module_el8.4.0+2399+4e3a532a.noarch.rpm	db5cb353e318349759fce0c08ce56cb2de461f0c9c44ff9cc817be574e8ce799
noarch	rubygem-abrt-0.4.0-1.module_el8.5.0+118+1ab773e1.noarch.rpm	ebe9ed7ca8474190371cf80965544fc06defb3a77741b11c30c66eceb1cec390
ppc64le	rubygem-bson-4.8.1-1.module_el8.5.0+117+35d1289b.ppc64le.rpm	294bb17ebabaf3469af4a2ca5767d29cba572dcb4ba45f1edcd0dfb8552d8e88
ppc64le	rubygem-pg-1.2.3-1.module_el8.5.0+118+1ab773e1.ppc64le.rpm	7436def9a0e4ca3a4b62dbc38643713baa67e1648fc945b62834e679edfe207a
ppc64le	rubygem-mysql2-0.5.3-1.module_el8.5.0+118+1ab773e1.ppc64le.rpm	af159fa28a5a0e664f252d88c5b7b50234c32672b2bae924c36579117a94f79f
x86_64	rubygem-pg-1.2.3-1.module_el8.3.0+6147+d0dfc1e4.x86_64.rpm	4623541f1928ac8ef87d69a61688487c69ad7b5bbbea63155b3926f598cf77c9
x86_64	rubygem-mysql2-0.5.3-1.module_el8.3.0+6147+d0dfc1e4.x86_64.rpm	506dba2f324f38bafd87da71f1369001b1d7eb9f879a6e03b956502e73762ad8
x86_64	rubygem-bson-4.8.1-1.module_el8.3.0+6147+d0dfc1e4.x86_64.rpm	e7c4280b8add334a20c39b3330bfb1840e885c62a484873de56286be27a3d5da

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.