[FEDORA-2018-1fffa787e7] Fedora 26: ruby
Severity
Critical
Affected Packages
1
CVEs
8
Fix: Multiple vulnerabilities in RubyGems https://www.ruby-
lang.org/en/news/2018/02/17/multiple-vulnerabilities-in-rubygems/
Package | Affected Version |
---|---|
pkg:rpm/fedora/ruby?distro=fedora-26 | < 2.4.3.87.fc26 |
- ID
- FEDORA-2018-1fffa787e7
- Severity
- critical
- Severity from
- CVE-2018-1000076
- URL
- https://bodhi.fedoraproject.org/updates/FEDORA-2018-1fffa787e7
- Published
-
2018-03-11T20:00:06
(6 years ago) - Modified
-
2018-03-11T20:00:06
(6 years ago) - Rights
- Copyright 2018 Red Hat, Inc.
- Other Advisories
-
- ALAS-2018-983
- ALAS2-2018-983
- ALAS2-2019-1276
- DSA-4219-1
- DSA-4259-1
- ELSA-2018-0378
- ELSA-2019-2028
- FEDORA-2018-40ed78700c
- MAVEN:GHSA-74PV-V9GH-H25P
- MAVEN:GHSA-87QX-G5WG-MWMJ
- MAVEN:GHSA-8QXG-MFF5-J3WC
- MAVEN:GHSA-GV86-43RV-79M2
- MAVEN:GHSA-GX69-6CP4-HXRJ
- MAVEN:GHSA-MC6J-H948-V2P6
- MAVEN:GHSA-QJ2W-MW2R-PV39
- openSUSE-SU-2019:1771-1
- RHSA-2018:0378
- RHSA-2019:2028
- RUBYSEC:RUBYGEMS-UPDATE-2018-1000073
- RUBYSEC:RUBYGEMS-UPDATE-2018-1000074
- RUBYSEC:RUBYGEMS-UPDATE-2018-1000075
- RUBYSEC:RUBYGEMS-UPDATE-2018-1000076
- RUBYSEC:RUBYGEMS-UPDATE-2018-1000077
- RUBYSEC:RUBYGEMS-UPDATE-2018-1000078
- RUBYSEC:RUBYGEMS-UPDATE-2018-1000079
- SUSE-SU-2019:1804-1
- SUSE-SU-2020:1570-1
- USN-3528-1
- USN-3621-1
- USN-3621-2
- USN-3685-1
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 1547431 | Bug #1547431 - CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 rubygems: various flaws [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=1547431 |
Bugzilla | 1528226 | Bug #1528226 - CVE-2017-17790 ruby: Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code execution [fedora-all] | https://bugzilla.redhat.com/show_bug.cgi?id=1528226 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/fedora/ruby?distro=fedora-26 | fedora | ruby | < 2.4.3.87.fc26 | fedora-26 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |