ALSA-2022:5779

[ALSA-2022:5779] Moderate: ruby:2.5 security update

Type:

security

Severity:

moderate

Release date:

2023-03-13

Description:

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.
Security Fix(es):
* ruby: Regular expression denial of service vulnerability of Date parsing methods (CVE-2021-41817)
* ruby: Cookie prefix spoofing in CGI::Cookie.parse (CVE-2021-41819)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm	12868dbc9d9c704ef9264a4f0d8d170e43ef257255a3c1cd519f0b8c28a0d564
aarch64	ruby-libs-2.5.9-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm	17b7a962ae085f5316d5c97478e1246fa98014414b4b4ea4209568fdc562619c
aarch64	rubygem-json-2.1.0-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm	487ec6c2cbd8b0fffb529fd15a54e12ee67f04787dfacd99b0e4077d840f40ad
aarch64	rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm	50759409ad529c286760fd3126ae19a1e98ecb0dcfd7741eb7977d1dc88cf833
aarch64	rubygem-bson-4.3.0-2.module_el8.5.0+2625+ec418553.aarch64.rpm	5974fa8497b83d1a4df2acf3d75301aa07fad828a823aec6a400436f617dc58f
aarch64	ruby-devel-2.5.9-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm	6ea234abbdf8141fbd5943c2e9394b74c8c93027debc85368bc297a1b506376c
aarch64	ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm	8c494af8afd1a27656116fe33e6f5ad0a9fbad96bb31ebe10b13afe1adba023c
aarch64	rubygem-pg-1.0.0-2.module_el8.5.0+2625+ec418553.aarch64.rpm	b76cc13be890a6906181ad9982fe8b11be4f53e55c642d0251eb2b8f4d838c3f
aarch64	rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm	c99f1323400e7bce815a08a774883f14aac85c0f2154f93ca867cb5f13824a35
aarch64	rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.aarch64.rpm	cc5fc65b88f3342e1a9599e8482f28f25b16650b5fa9657517b53c10962d4c95
aarch64	rubygem-mysql2-0.4.10-4.module_el8.5.0+2625+ec418553.aarch64.rpm	df9c22479a5fbb8f2897203f63a3e4427a4fe59460d7e9ed5fe686519e1e51c8
i686	ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.i686.rpm	1c19533ec8cdf60350155946b3822fbe2b001dc27a65f26319198506b52aa267
i686	ruby-devel-2.5.9-110.module_el8.6.0+3074+4b08f9d4.i686.rpm	2078259427dd0264e9bffb51d868b7049a325206b42a5b2bc4a29f7548c0f7de
i686	rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.i686.rpm	241c2d8bce315621c2018e0b1b8abda0e9cf63c4946adff58e3b432e913113e1
i686	rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.i686.rpm	3eee2868937b75a567fa3a8adaccb64b346c5443d3413f85f8b62131a0655148
i686	ruby-libs-2.5.9-110.module_el8.6.0+3074+4b08f9d4.i686.rpm	5a988aed58eb8208aa058e5efa8c4893f796dc1e64c00a94593c8adb4c9f555f
i686	rubygem-json-2.1.0-110.module_el8.6.0+3074+4b08f9d4.i686.rpm	d97abfeea571028db9c39259d9c0b84ef224fca48b50c325adafc0a80ae814ac
i686	rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.i686.rpm	e64575eff447ea36cb63c9e48fdc64ff9a169a4ac08160508683c69356ab191f
i686	rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.i686.rpm	e9cf6594860e2a2f32aa805813f3ad7652f4f57819ee2253efc1b1c2a81b2732
noarch	rubygem-net-telnet-0.1.1-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	00661718b74becb623c974d994fba9d8a1c3f4e5a4a12af547c6b6789b06128c
noarch	rubygem-did_you_mean-1.2.0-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	068aa1bc7d573cbdc88549550fdf4f3ef08f506404218faecbf3320876ed3fe8
noarch	rubygem-power_assert-1.1.1-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	0cb3993511a109c3691a00fedb62575c3639e340121341813a8778e34825c5e5
noarch	rubygems-2.7.6.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	0ec41c18921c933ac753204ff6e7cdc78ba2a3381df1eabc1225b8b12bd6dcb1
noarch	ruby-doc-2.5.9-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	150625a711fc7233e39724c8145c92f8991da4e88bedbd3928fc7d2e1237c1dd
noarch	rubygem-abrt-0.3.0-4.module_el8.5.0+2625+ec418553.noarch.rpm	251a37b9981b1ac6685904e0475b4cd0ae97be504b69cbc002896057cff48bbe
noarch	rubygem-rdoc-6.0.1.1-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	3a1af205411012cbede5835295a209c18f6423bcbca2fe941ae04c4d7e4c3381
noarch	ruby-irb-2.5.9-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	6344a8cb779306e7e83e7c4a67de20f3295b81afffb7a66f765e4074c2adf615
noarch	rubygems-devel-2.7.6.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	6598571680e42bb1c8485eb0751bcfc0f2df7ecb33a7d18f4deb80e7cd091e48
noarch	rubygem-xmlrpc-0.3.0-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	7291309310d988b93ee172b1752aabb5deb3b8535524dfc4ae5240dd53cf61b5
noarch	rubygem-rake-12.3.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	74b63a83f3e647ca2511155f21bafa1407da73703cac61553ee80bd805190a1d
noarch	rubygem-pg-doc-1.0.0-2.module_el8.5.0+2625+ec418553.noarch.rpm	7684213ac8f6b30ffaa2808065dc188c4ebdca462b5156f43fd2df88076d4a94
noarch	rubygem-test-unit-3.2.7-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	7fa27b2b297ab4edc27b5cd3322a5a6b5b2e6f6a47e7987a56db6d8118c793ef
noarch	rubygem-bson-doc-4.3.0-2.module_el8.5.0+2625+ec418553.noarch.rpm	820dee686065f0a35fb15e687d8595cfc665da43dc8ca2196c9e11fd568f8fb6
noarch	rubygem-abrt-doc-0.3.0-4.module_el8.5.0+2625+ec418553.noarch.rpm	8604fec34b7f851c63344f64e4510c4923f56bf9d3cdf0aba2aae1608f26c804
noarch	rubygem-mysql2-doc-0.4.10-4.module_el8.5.0+2625+ec418553.noarch.rpm	a5c437b38dfc84a5e1abd920fbb284c8c83eee2636c46db7be65dabe7580a319
noarch	rubygem-mongo-doc-2.5.1-2.module_el8.5.0+2625+ec418553.noarch.rpm	c506b397bd566dcb4d539202156f734660a33a62d3a515a6a1cd6b116e8f1608
noarch	rubygem-minitest-5.10.3-110.module_el8.6.0+3074+4b08f9d4.noarch.rpm	d884c9a2f696d837fe6f4ca2b8d023056f90ef2a61e341adc066e6a3891b71b6
noarch	rubygem-bundler-1.16.1-4.module_el8.5.0+2625+ec418553.noarch.rpm	e44944b1ea8c43c0239db82171975f80f84d77c71974dbe81d1519d2ffcca2d9
noarch	rubygem-bundler-doc-1.16.1-4.module_el8.5.0+2625+ec418553.noarch.rpm	e7bc7a169d1ab8e47160679f08d7f5d8c38e09c4dec5ec1b347c98bd07901732
noarch	rubygem-mongo-2.5.1-2.module_el8.5.0+2625+ec418553.noarch.rpm	fd8a90dea5a7c07c95bf2e7ac7337dba4ebe6a1ce35899e2b8c46c6d51b0bbc3
ppc64le	rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm	0fd7beec8970288a4601391a0d82bf5bada8a97414239f32f513a581f0450b87
ppc64le	rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm	33ed1370cbe1a997d3a66ca403ed7963024884cee4ab38d77e160f4c56d638d5
ppc64le	rubygem-pg-1.0.0-2.module_el8.5.0+259+8cec6917.ppc64le.rpm	41472bd23112bee428fd9abc821f3ae7009c37984ee001e3c3307f97df2cc34e
ppc64le	rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm	41d047ebcdf4cdfcd5f8c016bab5b4f402f3c3f958566540631518a7d0696d8e
ppc64le	ruby-devel-2.5.9-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm	635f5272f63a3a16b1ebef86c70a1a6b81e9e20a6852f815026dc5a7255bf41c
ppc64le	rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm	72dab25c764635974b3c89da7fda4dcfd1a746b3c8438f3095e3ef9b93af7dea
ppc64le	ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm	74f4250ad166eb7ac7cf2ebec2fccdcc633c9453f38eeca52ab861f8087938a0
ppc64le	rubygem-bson-4.3.0-2.module_el8.5.0+259+8cec6917.ppc64le.rpm	a5e4457e2736c2e55169c63d83c1c69429c57c426851036811976c1ccafb28af
ppc64le	rubygem-mysql2-0.4.10-4.module_el8.5.0+259+8cec6917.ppc64le.rpm	aa75a18f3d930eff9a18793d83ef37e5a4ee20d38020be57b8ce69c175f1eac8
ppc64le	ruby-libs-2.5.9-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm	f74108953438f44b902868856e1bb74c8babbb46e892745f012cbd39657a8a2e
ppc64le	rubygem-json-2.1.0-110.module_el8.6.0+3074+4b08f9d4.ppc64le.rpm	ff6f9a95f187d892fe7e28071cd13cc80007b2a173099c0c3af22bb23cc08dcf
x86_64	rubygem-pg-1.0.0-2.module_el8.5.0+2625+ec418553.x86_64.rpm	2476cd71faf291d949829de9fb61b9923886ba75aff75e3df9dd2e7117fe70c3
x86_64	rubygem-json-2.1.0-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm	359434eaef1525946696e3507f2c53a20c4d20b258b54e54d1d8015a38581a22
x86_64	rubygem-io-console-0.4.6-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm	657f3b617243748c2004362ce45502aea62e8ee3a89173ac83f937d4b8b860f4
x86_64	rubygem-bson-4.3.0-2.module_el8.5.0+2625+ec418553.x86_64.rpm	701b12df65f3a6b04c5a716c2d13fa048539842fff558d5ca2a5517735c0ad17
x86_64	ruby-2.5.9-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm	79d9e79ebd421a79cd44e7fbc325c15ce80b52a9e961bbb304691bf979704a36
x86_64	rubygem-mysql2-0.4.10-4.module_el8.5.0+2625+ec418553.x86_64.rpm	b2ebe847eeadbc351ac9bd080addfc65a5c7d8181cd5b6178b37febc62237648
x86_64	rubygem-psych-3.0.2-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm	b30dff0ce326abccaa5aa645e037d72edde6595857a4c3705c95e2a2f9389b7f
x86_64	ruby-libs-2.5.9-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm	beb15b2008b9c2817d16decdff148ddf9527939bb70497843bed916ba5ed4efe
x86_64	rubygem-bigdecimal-1.3.4-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm	e6f36663518a176bb044a360e2fb63ba56f5c2ce9830982e7e20c3a60e9fdd82
x86_64	ruby-devel-2.5.9-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm	e80067b5f1ab26ebcdc3e180ff3db7f35a757e8890ff6b591f2a34b2f73576e2
x86_64	rubygem-openssl-2.1.2-110.module_el8.6.0+3074+4b08f9d4.x86_64.rpm	fab6f353facf8f4291a4b991df2246baa08ace9ddc2e90647e6244fde8495ef3

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.