[ALSA-2022:0543] Important: ruby:2.6 security update
Type:
security
Severity:
important
Release date:
2022-02-16
Description:
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fix(es): * rubygem-bundler: Dependencies of gems with explicit source may be installed from a different source (CVE-2020-36327) * rubygem-rdoc: Command injection vulnerability in RDoc (CVE-2021-31799) * ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host (CVE-2021-31810) * ruby: StartTLS stripping vulnerability in Net::IMAP (CVE-2021-32066) * ruby: Regular expression denial of service vulnerability of Date parsing methods (CVE-2021-41817) * ruby: Cookie prefix spoofing in CGI::Cookie.parse (CVE-2021-41819) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages:
  • rubygem-io-console-0.4.7-108.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • ruby-libs-2.6.9-108.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • ruby-devel-2.6.9-108.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • rubygem-abrt-doc-0.3.0-4.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-did_you_mean-1.3.0-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-abrt-0.3.0-4.module_el8.5.0+2625+ec418553.noarch.rpm
  • rubygem-openssl-2.1.2-108.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • rubygem-test-unit-3.2.9-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-json-2.1.0-108.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • rubygem-net-telnet-0.2.0-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-bson-4.5.0-1.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • rubygem-rake-12.3.3-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-irb-1.0.0-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-bundler-1.17.2-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygems-devel-3.0.3.1-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-abrt-doc-0.3.0-4.module_el8.5.0+2625+ec418553.noarch.rpm
  • rubygem-psych-3.1.0-108.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • rubygem-mongo-2.8.0-1.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygems-3.0.3.1-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-pg-1.1.4-1.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • rubygem-pg-doc-1.1.4-1.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-xmlrpc-0.3.0-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-mysql2-doc-0.5.2-1.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • ruby-2.6.9-108.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • rubygem-abrt-0.3.0-4.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-mysql2-0.5.2-1.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • rubygem-rdoc-6.1.2.1-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-minitest-5.11.3-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • ruby-doc-2.6.9-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-bigdecimal-1.4.1-108.module_el8.5.0+2623+08a8ba32.aarch64.rpm
  • rubygem-power_assert-1.1.3-108.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-bson-doc-4.5.0-1.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-mongo-doc-2.8.0-1.module_el8.5.0+2623+08a8ba32.noarch.rpm
  • rubygem-bson-4.5.0-1.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • rubygem-bigdecimal-1.4.1-108.module_el8.5.0+2623+08a8ba32.i686.rpm
  • ruby-devel-2.6.9-108.module_el8.5.0+2623+08a8ba32.i686.rpm
  • ruby-devel-2.6.9-108.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • rubygem-psych-3.1.0-108.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • rubygem-io-console-0.4.7-108.module_el8.5.0+2623+08a8ba32.i686.rpm
  • rubygem-bigdecimal-1.4.1-108.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • rubygem-pg-1.1.4-1.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • rubygem-mysql2-0.5.2-1.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • rubygem-json-2.1.0-108.module_el8.5.0+2623+08a8ba32.i686.rpm
  • rubygem-json-2.1.0-108.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • ruby-2.6.9-108.module_el8.5.0+2623+08a8ba32.i686.rpm
  • rubygem-io-console-0.4.7-108.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • rubygem-openssl-2.1.2-108.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • ruby-2.6.9-108.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • rubygem-openssl-2.1.2-108.module_el8.5.0+2623+08a8ba32.i686.rpm
  • rubygem-psych-3.1.0-108.module_el8.5.0+2623+08a8ba32.i686.rpm
  • ruby-libs-2.6.9-108.module_el8.5.0+2623+08a8ba32.x86_64.rpm
  • ruby-libs-2.6.9-108.module_el8.5.0+2623+08a8ba32.i686.rpm
  • rubygem-abrt-doc-0.3.0-4.module_el8.5.0+259+8cec6917.noarch.rpm
  • rubygem-openssl-2.1.2-108.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
  • rubygems-3.0.3.1-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-mongo-2.8.0-1.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • ruby-2.6.9-108.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
  • rubygem-mysql2-0.5.2-1.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
  • rubygem-net-telnet-0.2.0-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-pg-1.1.4-1.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
  • rubygem-rdoc-6.1.2.1-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-bundler-1.17.2-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-mysql2-doc-0.5.2-1.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • ruby-doc-2.6.9-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-json-2.1.0-108.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
  • rubygem-bson-doc-4.5.0-1.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-xmlrpc-0.3.0-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygems-devel-3.0.3.1-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-irb-1.0.0-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-psych-3.1.0-108.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
  • rubygem-mongo-doc-2.8.0-1.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • ruby-devel-2.6.9-108.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
  • rubygem-abrt-0.3.0-4.module_el8.5.0+259+8cec6917.noarch.rpm
  • rubygem-bson-4.5.0-1.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
  • rubygem-test-unit-3.2.9-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-did_you_mean-1.3.0-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-power_assert-1.1.3-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • ruby-libs-2.6.9-108.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
  • rubygem-pg-doc-1.1.4-1.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-io-console-0.4.7-108.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
  • rubygem-rake-12.3.3-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-minitest-5.11.3-108.module_el8.5.0+250+ba22dbf7.noarch.rpm
  • rubygem-bigdecimal-1.4.1-108.module_el8.5.0+250+ba22dbf7.ppc64le.rpm
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.