[ELSA-2013-1090] ruby security update
Severity
Moderate
Affected Packages
18
CVEs
1
[1.8.7.352-12]
- Fix regression introduced by CVE-2013-4073
https://bugs.ruby-lang.org/issues/8575
* ruby-2.0.0-p255-Fix-SSL-client-connection-crash-for-SAN-marked-critical.patch
- Related: rhbz#979300
[1.8.7.352-11]
- hostname check bypassing vulnerability in SSL client.
* ruby-1.8.7-p374-CVE-2013-4073-fix-hostname-verification.patch
- Resolves: rhbz#979300
- ID
- ELSA-2013-1090
- Severity
- moderate
- URL
- https://linux.oracle.com/errata/ELSA-2013-1090.html
- Published
-
2013-07-17T00:00:00
(11 years ago) - Modified
-
2013-07-17T00:00:00
(11 years ago) - Rights
- Copyright 2013 Oracle, Inc.
- Other Advisories
DSA-2738-1
FEDORA-2013-12062
FREEBSD:EBD877B9-7EF4-4375-B1FD-C67780581898
RHSA-2013:1090
SSA:2013-178-01
USN-1902-1| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2013-1090 |
|
|
| CVE | CVE-2013-4073 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/ruby?distro=oraclelinux-6.4 | oraclelinux |
 ruby
|
< 1.8.7.352-12.el6_4 | oraclelinux-6.4 | ||
| Affected | pkg:rpm/oraclelinux/ruby?distro=oraclelinux-5.9 | oraclelinux |
ruby
|
< 1.8.5-31.el5_9 | oraclelinux-5.9 | ||
| Affected | pkg:rpm/oraclelinux/ruby-tcltk?distro=oraclelinux-6.4 | oraclelinux |
ruby-tcltk
|
< 1.8.7.352-12.el6_4 | oraclelinux-6.4 | ||
| Affected | pkg:rpm/oraclelinux/ruby-tcltk?distro=oraclelinux-5.9 | oraclelinux |
ruby-tcltk
|
< 1.8.5-31.el5_9 | oraclelinux-5.9 | ||
| Affected | pkg:rpm/oraclelinux/ruby-static?distro=oraclelinux-6.4 | oraclelinux |
ruby-static
|
< 1.8.7.352-12.el6_4 | oraclelinux-6.4 | ||
| Affected | pkg:rpm/oraclelinux/ruby-ri?distro=oraclelinux-6.4 | oraclelinux |
ruby-ri
|
< 1.8.7.352-12.el6_4 | oraclelinux-6.4 | ||
| Affected | pkg:rpm/oraclelinux/ruby-ri?distro=oraclelinux-5.9 | oraclelinux |
ruby-ri
|
< 1.8.5-31.el5_9 | oraclelinux-5.9 | ||
| Affected | pkg:rpm/oraclelinux/ruby-rdoc?distro=oraclelinux-6.4 | oraclelinux |
ruby-rdoc
|
< 1.8.7.352-12.el6_4 | oraclelinux-6.4 | ||
| Affected | pkg:rpm/oraclelinux/ruby-rdoc?distro=oraclelinux-5.9 | oraclelinux |
ruby-rdoc
|
< 1.8.5-31.el5_9 | oraclelinux-5.9 | ||
| Affected | pkg:rpm/oraclelinux/ruby-mode?distro=oraclelinux-5.9 | oraclelinux |
ruby-mode
|
< 1.8.5-31.el5_9 | oraclelinux-5.9 | ||
| Affected | pkg:rpm/oraclelinux/ruby-libs?distro=oraclelinux-6.4 | oraclelinux |
ruby-libs
|
< 1.8.7.352-12.el6_4 | oraclelinux-6.4 | ||
| Affected | pkg:rpm/oraclelinux/ruby-libs?distro=oraclelinux-5.9 | oraclelinux |
ruby-libs
|
< 1.8.5-31.el5_9 | oraclelinux-5.9 | ||
| Affected | pkg:rpm/oraclelinux/ruby-irb?distro=oraclelinux-6.4 | oraclelinux |
ruby-irb
|
< 1.8.7.352-12.el6_4 | oraclelinux-6.4 | ||
| Affected | pkg:rpm/oraclelinux/ruby-irb?distro=oraclelinux-5.9 | oraclelinux |
ruby-irb
|
< 1.8.5-31.el5_9 | oraclelinux-5.9 | ||
| Affected | pkg:rpm/oraclelinux/ruby-docs?distro=oraclelinux-6.4 | oraclelinux |
ruby-docs
|
< 1.8.7.352-12.el6_4 | oraclelinux-6.4 | ||
| Affected | pkg:rpm/oraclelinux/ruby-docs?distro=oraclelinux-5.9 | oraclelinux |
ruby-docs
|
< 1.8.5-31.el5_9 | oraclelinux-5.9 | ||
| Affected | pkg:rpm/oraclelinux/ruby-devel?distro=oraclelinux-6.4 | oraclelinux |
ruby-devel
|
< 1.8.7.352-12.el6_4 | oraclelinux-6.4 | ||
| Affected | pkg:rpm/oraclelinux/ruby-devel?distro=oraclelinux-5.9 | oraclelinux |
ruby-devel
|
< 1.8.5-31.el5_9 | oraclelinux-5.9 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |