[RHSA-2022:0545] ruby:2.5 security update
Severity
Important
Affected Packages
2
CVEs
1
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.
Security Fix(es):
- rubygem-bundler: Dependencies of gems with explicit source may be installed from a different source (CVE-2020-36327)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Package | Affected Version |
---|---|
pkg:rpm/redhat/rubygem-bundler?distro=redhat-8.5 | < 1.16.1-4.module+el8.5.0+13840+ec418553 |
pkg:rpm/redhat/rubygem-bundler-doc?distro=redhat-8.5 | < 1.16.1-4.module+el8.5.0+13840+ec418553 |
- ID
- RHSA-2022:0545
- Severity
- important
- URL
- https://access.redhat.com/errata/RHSA-2022:0545
- Published
-
2022-02-16T00:00:00
(2 years ago) - Modified
-
2022-02-16T00:00:00
(2 years ago) - Rights
- Copyright 2022 Red Hat, Inc.
- Other Advisories
Source | # ID | Name | URL |
---|---|---|---|
Bugzilla | 1958999 | https://bugzilla.redhat.com/1958999 | |
RHSA | RHSA-2022:0545 | https://access.redhat.com/errata/RHSA-2022:0545 | |
CVE | CVE-2020-36327 | https://access.redhat.com/security/cve/CVE-2020-36327 |
Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
---|---|---|---|---|---|---|---|
Affected | pkg:rpm/redhat/rubygem-bundler?distro=redhat-8.5 | redhat | rubygem-bundler | < 1.16.1-4.module+el8.5.0+13840+ec418553 | redhat-8.5 | ||
Affected | pkg:rpm/redhat/rubygem-bundler-doc?distro=redhat-8.5 | redhat | rubygem-bundler-doc | < 1.16.1-4.module+el8.5.0+13840+ec418553 | redhat-8.5 |
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
---|---|---|---|---|---|---|---|---|---|---|---|
# CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |