1. Home
  2. Security Advisories
  3. Fedora
  4. FEDORA-2018-0db545e976

[FEDORA-2018-0db545e976] Fedora 26: ruby

Severity Critical
Affected Packages 1
CVEs 1
Info Packages References Vulnerabilities

Update to Ruby 2.4.3.

Package Affected Version
pkg:rpm/fedora/ruby?distro=fedora-26 < 2.4.3.86.fc26
ID
FEDORA-2018-0db545e976
Severity
critical
Severity from
CVE-2017-0903
URL
https://bodhi.fedoraproject.org/updates/FEDORA-2018-0db545e976
Published
2018-02-20T16:39:57
(6 years ago)
Modified
2018-02-20T16:39:57
(6 years ago)
Rights
Copyright 2018 Red Hat, Inc.
Other Advisories
Source # ID Name URL
Bugzilla 1500654 Bug #1500654 - CVE-2017-0903 ruby: rubygems: Unsafe object deserialization through YAML formatted gem specifications [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1500654
Type Package URL Namespace Name / Product Version Distribution / Platform Arch Patch / Fix
Affected pkg:rpm/fedora/ruby?distro=fedora-26 fedora ruby < 2.4.3.86.fc26 fedora-26
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories Exploits PoC Pubblication Date Modification Date
# CVE Description CVSS EPSS EPSS Trend (30 days) Affected Products Weaknesses Security Advisories PoC Pubblication Date Modification Date