[RHSA-2022:0672] ruby:2.5 security update
Severity
Moderate
Affected Packages
73
CVEs
3
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.
Security Fix(es):
rubygem-rdoc: Command injection vulnerability in RDoc (CVE-2021-31799)
ruby: FTP PASV command response can cause Net::FTP to connect to arbitrary host (CVE-2021-31810)
ruby: StartTLS stripping vulnerability in Net::IMAP (CVE-2021-32066)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- ID
- RHSA-2022:0672
- Severity
- moderate
- URL
- https://access.redhat.com/errata/RHSA-2022:0672
- Published
-
2022-02-24T00:00:00
(2 years ago) - Modified
-
2022-02-24T00:00:00
(2 years ago) - Rights
- Copyright 2022 Red Hat, Inc.
- Other Advisories
-
-
ALAS-2021-1505
-
ALAS-2021-1506
-
ALAS2-2021-1641
-
ALAS2-2024-2534
-
ALAS2-2024-2570
-
ALPINE:CVE-2021-31799
-
ALPINE:CVE-2021-31810
-
ALPINE:CVE-2021-32066
-
ALSA-2021:3020
-
ALSA-2022:0543
-
ALSA-2022:0672
-
ASA-202107-18
-
ASA-202107-23
-
ASA-202107-24
-
DSA-5066-1
-
ELSA-2021-3020
-
ELSA-2022-0543
-
ELSA-2022-0672
-
FEDORA-2021-36cdab1f8d
-
FREEBSD:57027417-AB7F-11EB-9596-080027F515EA
-
FREEBSD:7ED5779C-E4C7-11EB-91D7-08002728F74C
-
GLSA-202401-05
-
GLSA-202401-27
-
openSUSE-SU-2021:1535-1
-
openSUSE-SU-2021:3838-1
-
RHSA-2021:3020
-
RHSA-2022:0543
-
RLSA-2021:3020
-
RLSA-2022:0543
-
RLSA-2022:0672
-
RUBYSEC:RDOC-2021-31799
-
SUSE-SU-2021:3837-1
-
SUSE-SU-2021:3838-1
-
SUSE-SU-2022:1512-1
-
USN-5020-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Bugzilla | 1980126 |
|
|
| Bugzilla | 1980128 |
|
|
| Bugzilla | 1980132 |
|
|
| RHSA | RHSA-2022:0672 |
|
|
| CVE | CVE-2021-31799 |
|
|
| CVE | CVE-2021-31810 |
|
|
| CVE | CVE-2021-32066 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/redhat/rubygems?distro=redhat-8.5 | redhat |
 rubygems
|
< 2.7.6.3-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygems-devel?distro=redhat-8.5 | redhat |
rubygems-devel
|
< 2.7.6.3-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-xmlrpc?distro=redhat-8.5 | redhat |
rubygem-xmlrpc
|
< 0.3.0-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-test-unit?distro=redhat-8.5 | redhat |
rubygem-test-unit
|
< 3.2.7-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-rdoc?distro=redhat-8.5 | redhat |
rubygem-rdoc
|
< 6.0.1.1-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-rake?distro=redhat-8.5 | redhat |
rubygem-rake
|
< 12.3.3-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-psych?arch=x86_64&distro=redhat-8.5 | redhat |
rubygem-psych
|
< 3.0.2-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-psych?arch=s390x&distro=redhat-8.5 | redhat |
rubygem-psych
|
< 3.0.2-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-psych?arch=ppc64le&distro=redhat-8.5 | redhat |
rubygem-psych
|
< 3.0.2-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-psych?arch=i686&distro=redhat-8.5 | redhat |
rubygem-psych
|
< 3.0.2-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | i686 | |
| Affected | pkg:rpm/redhat/rubygem-psych?arch=aarch64&distro=redhat-8.5 | redhat |
rubygem-psych
|
< 3.0.2-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-power_assert?distro=redhat-8.5 | redhat |
rubygem-power_assert
|
< 1.1.1-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-pg?arch=x86_64&distro=redhat-8.1 | redhat |
rubygem-pg
|
< 1.0.0-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-pg?arch=s390x&distro=redhat-8.1 | redhat |
rubygem-pg
|
< 1.0.0-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-pg?arch=ppc64le&distro=redhat-8.1 | redhat |
rubygem-pg
|
< 1.0.0-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-pg?arch=aarch64&distro=redhat-8.1 | redhat |
rubygem-pg
|
< 1.0.0-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-pg-doc?distro=redhat-8.1 | redhat |
rubygem-pg-doc
|
< 1.0.0-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | ||
| Affected | pkg:rpm/redhat/rubygem-openssl?arch=x86_64&distro=redhat-8.5 | redhat |
rubygem-openssl
|
< 2.1.2-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-openssl?arch=s390x&distro=redhat-8.5 | redhat |
rubygem-openssl
|
< 2.1.2-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-openssl?arch=ppc64le&distro=redhat-8.5 | redhat |
rubygem-openssl
|
< 2.1.2-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-openssl?arch=i686&distro=redhat-8.5 | redhat |
rubygem-openssl
|
< 2.1.2-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | i686 | |
| Affected | pkg:rpm/redhat/rubygem-openssl?arch=aarch64&distro=redhat-8.5 | redhat |
rubygem-openssl
|
< 2.1.2-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-net-telnet?distro=redhat-8.5 | redhat |
rubygem-net-telnet
|
< 0.1.1-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-mysql2?arch=x86_64&distro=redhat-8.1 | redhat |
rubygem-mysql2
|
< 0.4.10-4.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-mysql2?arch=s390x&distro=redhat-8.1 | redhat |
rubygem-mysql2
|
< 0.4.10-4.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-mysql2?arch=ppc64le&distro=redhat-8.1 | redhat |
rubygem-mysql2
|
< 0.4.10-4.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-mysql2?arch=aarch64&distro=redhat-8.1 | redhat |
rubygem-mysql2
|
< 0.4.10-4.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-mysql2-doc?distro=redhat-8.1 | redhat |
rubygem-mysql2-doc
|
< 0.4.10-4.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | ||
| Affected | pkg:rpm/redhat/rubygem-mongo?distro=redhat-8.1 | redhat |
rubygem-mongo
|
< 2.5.1-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | ||
| Affected | pkg:rpm/redhat/rubygem-mongo-doc?distro=redhat-8.1 | redhat |
rubygem-mongo-doc
|
< 2.5.1-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | ||
| Affected | pkg:rpm/redhat/rubygem-minitest?distro=redhat-8.5 | redhat |
rubygem-minitest
|
< 5.10.3-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-json?arch=x86_64&distro=redhat-8.5 | redhat |
rubygem-json
|
< 2.1.0-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-json?arch=s390x&distro=redhat-8.5 | redhat |
rubygem-json
|
< 2.1.0-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-json?arch=ppc64le&distro=redhat-8.5 | redhat |
rubygem-json
|
< 2.1.0-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-json?arch=i686&distro=redhat-8.5 | redhat |
rubygem-json
|
< 2.1.0-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | i686 | |
| Affected | pkg:rpm/redhat/rubygem-json?arch=aarch64&distro=redhat-8.5 | redhat |
rubygem-json
|
< 2.1.0-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-io-console?arch=x86_64&distro=redhat-8.5 | redhat |
rubygem-io-console
|
< 0.4.6-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-io-console?arch=s390x&distro=redhat-8.5 | redhat |
rubygem-io-console
|
< 0.4.6-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-io-console?arch=ppc64le&distro=redhat-8.5 | redhat |
rubygem-io-console
|
< 0.4.6-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-io-console?arch=i686&distro=redhat-8.5 | redhat |
rubygem-io-console
|
< 0.4.6-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | i686 | |
| Affected | pkg:rpm/redhat/rubygem-io-console?arch=aarch64&distro=redhat-8.5 | redhat |
rubygem-io-console
|
< 0.4.6-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-did_you_mean?distro=redhat-8.5 | redhat |
rubygem-did_you_mean
|
< 1.2.0-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-bundler?distro=redhat-8.5 | redhat |
rubygem-bundler
|
< 1.16.1-4.module+el8.5.0+13840+ec418553 | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-bundler-doc?distro=redhat-8.5 | redhat |
rubygem-bundler-doc
|
< 1.16.1-4.module+el8.5.0+13840+ec418553 | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/rubygem-bson?arch=x86_64&distro=redhat-8.1 | redhat |
rubygem-bson
|
< 4.3.0-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-bson?arch=s390x&distro=redhat-8.1 | redhat |
rubygem-bson
|
< 4.3.0-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-bson?arch=ppc64le&distro=redhat-8.1 | redhat |
rubygem-bson
|
< 4.3.0-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-bson?arch=aarch64&distro=redhat-8.1 | redhat |
rubygem-bson
|
< 4.3.0-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-bson-doc?distro=redhat-8.1 | redhat |
rubygem-bson-doc
|
< 4.3.0-2.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | ||
| Affected | pkg:rpm/redhat/rubygem-bigdecimal?arch=x86_64&distro=redhat-8.5 | redhat |
rubygem-bigdecimal
|
< 1.3.4-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-bigdecimal?arch=s390x&distro=redhat-8.5 | redhat |
rubygem-bigdecimal
|
< 1.3.4-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-bigdecimal?arch=ppc64le&distro=redhat-8.5 | redhat |
rubygem-bigdecimal
|
< 1.3.4-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-bigdecimal?arch=i686&distro=redhat-8.5 | redhat |
rubygem-bigdecimal
|
< 1.3.4-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | i686 | |
| Affected | pkg:rpm/redhat/rubygem-bigdecimal?arch=aarch64&distro=redhat-8.5 | redhat |
rubygem-bigdecimal
|
< 1.3.4-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-abrt?distro=redhat-8.1 | redhat |
rubygem-abrt
|
< 0.3.0-4.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | ||
| Affected | pkg:rpm/redhat/rubygem-abrt-doc?distro=redhat-8.1 | redhat |
rubygem-abrt-doc
|
< 0.3.0-4.module+el8.1.0+3656+f80bfa1d | redhat-8.1 | ||
| Affected | pkg:rpm/redhat/ruby?arch=x86_64&distro=redhat-8.5 | redhat |
ruby
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | x86_64 | |
| Affected | pkg:rpm/redhat/ruby?arch=s390x&distro=redhat-8.5 | redhat |
ruby
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | s390x | |
| Affected | pkg:rpm/redhat/ruby?arch=ppc64le&distro=redhat-8.5 | redhat |
ruby
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ppc64le | |
| Affected | pkg:rpm/redhat/ruby?arch=i686&distro=redhat-8.5 | redhat |
ruby
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | i686 | |
| Affected | pkg:rpm/redhat/ruby?arch=aarch64&distro=redhat-8.5 | redhat |
ruby
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | aarch64 | |
| Affected | pkg:rpm/redhat/ruby-libs?arch=x86_64&distro=redhat-8.5 | redhat |
ruby-libs
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | x86_64 | |
| Affected | pkg:rpm/redhat/ruby-libs?arch=s390x&distro=redhat-8.5 | redhat |
ruby-libs
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | s390x | |
| Affected | pkg:rpm/redhat/ruby-libs?arch=ppc64le&distro=redhat-8.5 | redhat |
ruby-libs
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ppc64le | |
| Affected | pkg:rpm/redhat/ruby-libs?arch=i686&distro=redhat-8.5 | redhat |
ruby-libs
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | i686 | |
| Affected | pkg:rpm/redhat/ruby-libs?arch=aarch64&distro=redhat-8.5 | redhat |
ruby-libs
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | aarch64 | |
| Affected | pkg:rpm/redhat/ruby-irb?distro=redhat-8.5 | redhat |
ruby-irb
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/ruby-doc?distro=redhat-8.5 | redhat |
ruby-doc
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ||
| Affected | pkg:rpm/redhat/ruby-devel?arch=x86_64&distro=redhat-8.5 | redhat |
ruby-devel
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | x86_64 | |
| Affected | pkg:rpm/redhat/ruby-devel?arch=s390x&distro=redhat-8.5 | redhat |
ruby-devel
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | s390x | |
| Affected | pkg:rpm/redhat/ruby-devel?arch=ppc64le&distro=redhat-8.5 | redhat |
ruby-devel
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | ppc64le | |
| Affected | pkg:rpm/redhat/ruby-devel?arch=i686&distro=redhat-8.5 | redhat |
ruby-devel
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | i686 | |
| Affected | pkg:rpm/redhat/ruby-devel?arch=aarch64&distro=redhat-8.5 | redhat |
ruby-devel
|
< 2.5.9-109.module+el8.5.0+14275+d9c243ca | redhat-8.5 | aarch64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |