[ELSA-2022-0543] ruby:2.6 security update
Severity
Important
Affected Packages
31
CVEs
6
ruby
[2.6.9-108]
- Upgrade to Ruby 2.6.9.
- Skip JIT tests in RHEL 8.
- Fix the issues required to start the 'make test-bundler' itself.
- Fix Bundler dependency confusion.
Resolves: CVE-2020-36327
- ID
- ELSA-2022-0543
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2022-0543.html
- Published
-
2022-02-16T00:00:00
(2 years ago) - Modified
-
2022-02-16T00:00:00
(2 years ago) - Rights
- Copyright 2022 Oracle, Inc.
- Other Advisories
-
- ALAS-2021-1505
- ALAS-2021-1506
- ALAS2-2021-1641
- ALAS2-2023-2345
- ALAS2-2024-2486
- ALAS2-2024-2534
- ALAS2-2024-2570
- ALPINE:CVE-2021-31799
- ALPINE:CVE-2021-31810
- ALPINE:CVE-2021-32066
- ALPINE:CVE-2021-41817
- ALPINE:CVE-2021-41819
- ALSA-2021:3020
- ALSA-2022:0543
- ALSA-2022:0545
- ALSA-2022:0672
- ALSA-2022:5779
- ALSA-2022:6447
- ALSA-2022:6450
- ASA-202106-14
- ASA-202107-18
- ASA-202107-23
- ASA-202107-24
- DSA-5066-1
- DSA-5067-1
- ELSA-2021-3020
- ELSA-2022-0545
- ELSA-2022-0672
- ELSA-2022-5779
- ELSA-2022-6447
- ELSA-2022-6450
- FEDORA-2021-36cdab1f8d
- FEDORA-2022-82a9edac27
- FEDORA-2022-8cf0124add
- FREEBSD:4548EC97-4D38-11EC-A539-0800270512F4
- FREEBSD:57027417-AB7F-11EB-9596-080027F515EA
- FREEBSD:6916EA94-4628-11EC-BBE2-0800270512F4
- FREEBSD:7ED5779C-E4C7-11EB-91D7-08002728F74C
- GLSA-202401-05
- GLSA-202401-27
- GLSA-202408-22
- MS:CVE-2021-41817
- MS:CVE-2021-41819
- openSUSE-SU-2021:1535-1
- openSUSE-SU-2021:3838-1
- RHSA-2021:3020
- RHSA-2022:0543
- RHSA-2022:0545
- RHSA-2022:0672
- RHSA-2022:5779
- RHSA-2022:6447
- RHSA-2022:6450
- RLSA-2021:3020
- RLSA-2022:0543
- RLSA-2022:0545
- RLSA-2022:0672
- RLSA-2022:5779
- RLSA-2022:6447
- RLSA-2022:6450
- RUBYSEC:BUNDLER-2020-36327
- RUBYSEC:CGI-2021-41819
- RUBYSEC:DATE-2021-41817
- RUBYSEC:RDOC-2021-31799
- SUSE-SU-2021:3837-1
- SUSE-SU-2021:3838-1
- SUSE-SU-2022:1512-1
- SUSE-SU-2022:3292-1
- SUSE-SU-2023:4176-1
- USN-5020-1
- USN-5235-1
Source | # ID | Name | URL |
---|---|---|---|
elsa | ELSA-2022-0543 | https://linux.oracle.com/errata/ELSA-2022-0543.html | |
CVE | CVE-2020-36327 | https://linux.oracle.com/cve/CVE-2020-36327.html | |
CVE | CVE-2021-31799 | https://linux.oracle.com/cve/CVE-2021-31799.html | |
CVE | CVE-2021-32066 | https://linux.oracle.com/cve/CVE-2021-32066.html | |
CVE | CVE-2021-31810 | https://linux.oracle.com/cve/CVE-2021-31810.html | |
CVE | CVE-2021-41817 | https://linux.oracle.com/cve/CVE-2021-41817.html | |
CVE | CVE-2021-41819 | https://linux.oracle.com/cve/CVE-2021-41819.html |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/oraclelinux/rubygems?distro=oraclelinux-8.5 | oraclelinux | rubygems | < 3.0.3.1-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygems-devel?distro=oraclelinux-8.5 | oraclelinux | rubygems-devel | < 3.0.3.1-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-xmlrpc?distro=oraclelinux-8.5 | oraclelinux | rubygem-xmlrpc | < 0.3.0-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-test-unit?distro=oraclelinux-8.5 | oraclelinux | rubygem-test-unit | < 3.2.9-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-rdoc?distro=oraclelinux-8.5 | oraclelinux | rubygem-rdoc | < 6.1.2.1-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-rake?distro=oraclelinux-8.5 | oraclelinux | rubygem-rake | < 12.3.3-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-psych?distro=oraclelinux-8.5 | oraclelinux | rubygem-psych | < 3.1.0-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-power_assert?distro=oraclelinux-8.5 | oraclelinux | rubygem-power_assert | < 1.1.3-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-pg?distro=oraclelinux-8.4 | oraclelinux | rubygem-pg | < 1.1.4-1.module+el8.4.0+20235+1e5b8be3 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/rubygem-pg-doc?distro=oraclelinux-8.4 | oraclelinux | rubygem-pg-doc | < 1.1.4-1.module+el8.4.0+20235+1e5b8be3 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/rubygem-openssl?distro=oraclelinux-8.5 | oraclelinux | rubygem-openssl | < 2.1.2-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-net-telnet?distro=oraclelinux-8.5 | oraclelinux | rubygem-net-telnet | < 0.2.0-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-mysql2?distro=oraclelinux-8.4 | oraclelinux | rubygem-mysql2 | < 0.5.2-1.module+el8.4.0+20235+1e5b8be3 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/rubygem-mysql2-doc?distro=oraclelinux-8.4 | oraclelinux | rubygem-mysql2-doc | < 0.5.2-1.module+el8.4.0+20235+1e5b8be3 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/rubygem-mongo?distro=oraclelinux-8.1 | oraclelinux | rubygem-mongo | < 2.8.0-1.module+el8.1.0+5406+ce01f9b9 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/rubygem-mongo-doc?distro=oraclelinux-8.1 | oraclelinux | rubygem-mongo-doc | < 2.8.0-1.module+el8.1.0+5406+ce01f9b9 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/rubygem-minitest?distro=oraclelinux-8.5 | oraclelinux | rubygem-minitest | < 5.11.3-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-json?distro=oraclelinux-8.5 | oraclelinux | rubygem-json | < 2.1.0-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-irb?distro=oraclelinux-8.5 | oraclelinux | rubygem-irb | < 1.0.0-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-io-console?distro=oraclelinux-8.5 | oraclelinux | rubygem-io-console | < 0.4.7-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-did_you_mean?distro=oraclelinux-8.5 | oraclelinux | rubygem-did_you_mean | < 1.3.0-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-bundler?distro=oraclelinux-8.5 | oraclelinux | rubygem-bundler | < 1.17.2-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-bson?distro=oraclelinux-8.4 | oraclelinux | rubygem-bson | < 4.5.0-1.module+el8.4.0+20235+1e5b8be3 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/rubygem-bson-doc?distro=oraclelinux-8.4 | oraclelinux | rubygem-bson-doc | < 4.5.0-1.module+el8.4.0+20235+1e5b8be3 | oraclelinux-8.4 | ||
Affected | pkg:rpm/oraclelinux/rubygem-bigdecimal?distro=oraclelinux-8.5 | oraclelinux | rubygem-bigdecimal | < 1.4.1-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/rubygem-abrt?distro=oraclelinux-8.1 | oraclelinux | rubygem-abrt | < 0.3.0-4.module+el8.1.0+5406+ce01f9b9 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/rubygem-abrt-doc?distro=oraclelinux-8.1 | oraclelinux | rubygem-abrt-doc | < 0.3.0-4.module+el8.1.0+5406+ce01f9b9 | oraclelinux-8.1 | ||
Affected | pkg:rpm/oraclelinux/ruby?distro=oraclelinux-8.5 | oraclelinux | ruby | < 2.6.9-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/ruby-libs?distro=oraclelinux-8.5 | oraclelinux | ruby-libs | < 2.6.9-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/ruby-doc?distro=oraclelinux-8.5 | oraclelinux | ruby-doc | < 2.6.9-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 | ||
Affected | pkg:rpm/oraclelinux/ruby-devel?distro=oraclelinux-8.5 | oraclelinux | ruby-devel | < 2.6.9-108.module+el8.5.0+20495+db24e7b4 | oraclelinux-8.5 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |