Severity
Moderate
Affected Packages
69
CVEs
4
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.
The following packages have been upgraded to a later upstream version: ruby (3.1). (RHEL-29052)
Security Fix(es):
ruby/cgi-gem: HTTP response splitting in CGI (CVE-2021-33621)
ruby: ReDoS vulnerability in URI (CVE-2023-28755)
ruby: ReDoS vulnerability - upstream's incomplete fix for CVE-2023-28755 (CVE-2023-36617)
ruby: ReDoS vulnerability in Time (CVE-2023-28756)
Bug Fix(es):
ruby/rubygem-irb: IRB has hard dependency on rubygem-rdoc (RHEL-29048)
ruby: Ruby cannot read private key in FIPS mode on RHEL 9 (RHEL-12437)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
- ID
- RHSA-2024:1576
- Severity
- moderate
- URL
- https://access.redhat.com/errata/RHSA-2024:1576
- Published
-
2024-04-01T00:00:00
(3 months ago) - Modified
-
2024-04-01T00:00:00
(3 months ago) - Rights
- Copyright 2024 Red Hat, Inc.
- Other Advisories
-
-
ALAS2-2023-2084
-
ALAS2-2024-2503
-
ALPINE:CVE-2021-33621
-
ALPINE:CVE-2023-28755
-
ALPINE:CVE-2023-28756
-
ALSA-2023:3821
-
ALSA-2023:7025
-
ALSA-2024:1431
-
ALSA-2024:1576
-
ALSA-2024:3500
-
ALSA-2024:3838
-
ALSA-2024:4499
-
ELSA-2023-3821
-
ELSA-2023-7025
-
ELSA-2024-1431
-
ELSA-2024-1576
-
ELSA-2024-3500
-
ELSA-2024-3838
-
ELSA-2024-4499
-
FREEBSD:6BD2773C-CF1A-11ED-BD44-080027F5FEC9
-
FREEBSD:84AB03B6-6C20-11ED-B519-080027F5FEC9
-
FREEBSD:9B60BBA1-CF18-11ED-BD44-080027F5FEC9
-
GLSA-202401-27
-
RHSA-2023:3821
-
RHSA-2023:7025
-
RHSA-2024:1431
-
RHSA-2024:3500
-
RHSA-2024:3838
-
RHSA-2024:4499
-
RUBYSEC:CGI-2021-33621
-
RUBYSEC:TIME-2023-28756
-
RUBYSEC:URI-2023-28755
-
RUBYSEC:URI-2023-36617
-
SSA:2022-328-01
-
SSA:2023-090-01
-
SUSE-SU-2023:4176-1
-
USN-5806-1
-
USN-5806-2
-
USN-5806-3
-
USN-6055-1
-
USN-6055-2
-
USN-6087-1
-
USN-6181-1
-
USN-6219-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Bugzilla | 2149706 |
|
|
| Bugzilla | 2184059 |
|
|
| Bugzilla | 2184061 |
|
|
| Bugzilla | 2218614 |
|
|
| RHSA | RHSA-2024:1576 |
|
|
| CVE | CVE-2021-33621 |
|
|
| CVE | CVE-2023-28755 |
|
|
| CVE | CVE-2023-28756 |
|
|
| CVE | CVE-2023-36617 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/redhat/rubygems?distro=redhat-9.3 | redhat |
 rubygems
|
< 3.3.26-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygems-devel?distro=redhat-9.3 | redhat |
rubygems-devel
|
< 3.3.26-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-typeprof?distro=redhat-9.3 | redhat |
rubygem-typeprof
|
< 0.21.3-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-test-unit?distro=redhat-9.3 | redhat |
rubygem-test-unit
|
< 3.5.3-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-rss?distro=redhat-9.3 | redhat |
rubygem-rss
|
< 0.2.9-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-rexml?distro=redhat-9.3 | redhat |
rubygem-rexml
|
< 3.2.5-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-rdoc?distro=redhat-9.3 | redhat |
rubygem-rdoc
|
< 6.4.0-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-rbs?arch=x86_64&distro=redhat-9.3 | redhat |
rubygem-rbs
|
< 2.7.0-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-rbs?arch=s390x&distro=redhat-9.3 | redhat |
rubygem-rbs
|
< 2.7.0-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-rbs?arch=ppc64le&distro=redhat-9.3 | redhat |
rubygem-rbs
|
< 2.7.0-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-rbs?arch=i686&distro=redhat-9.3 | redhat |
rubygem-rbs
|
< 2.7.0-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | i686 | |
| Affected | pkg:rpm/redhat/rubygem-rbs?arch=aarch64&distro=redhat-9.3 | redhat |
rubygem-rbs
|
< 2.7.0-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-rake?distro=redhat-9.3 | redhat |
rubygem-rake
|
< 13.0.6-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-psych?arch=x86_64&distro=redhat-9.3 | redhat |
rubygem-psych
|
< 4.0.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-psych?arch=s390x&distro=redhat-9.3 | redhat |
rubygem-psych
|
< 4.0.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-psych?arch=ppc64le&distro=redhat-9.3 | redhat |
rubygem-psych
|
< 4.0.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-psych?arch=i686&distro=redhat-9.3 | redhat |
rubygem-psych
|
< 4.0.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | i686 | |
| Affected | pkg:rpm/redhat/rubygem-psych?arch=aarch64&distro=redhat-9.3 | redhat |
rubygem-psych
|
< 4.0.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-power_assert?distro=redhat-9.3 | redhat |
rubygem-power_assert
|
< 2.0.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-pg?arch=x86_64&distro=redhat-9.1 | redhat |
rubygem-pg
|
< 1.3.5-1.module+el9.1.0+15737+76195479 | redhat-9.1 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-pg?arch=s390x&distro=redhat-9.1 | redhat |
rubygem-pg
|
< 1.3.5-1.module+el9.1.0+15737+76195479 | redhat-9.1 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-pg?arch=ppc64le&distro=redhat-9.1 | redhat |
rubygem-pg
|
< 1.3.5-1.module+el9.1.0+15737+76195479 | redhat-9.1 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-pg?arch=aarch64&distro=redhat-9.1 | redhat |
rubygem-pg
|
< 1.3.5-1.module+el9.1.0+15737+76195479 | redhat-9.1 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-pg-doc?distro=redhat-9.1 | redhat |
rubygem-pg-doc
|
< 1.3.5-1.module+el9.1.0+15737+76195479 | redhat-9.1 | ||
| Affected | pkg:rpm/redhat/rubygem-mysql2?arch=x86_64&distro=redhat-9.1 | redhat |
rubygem-mysql2
|
< 0.5.4-1.module+el9.1.0+15737+76195479 | redhat-9.1 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-mysql2?arch=s390x&distro=redhat-9.1 | redhat |
rubygem-mysql2
|
< 0.5.4-1.module+el9.1.0+15737+76195479 | redhat-9.1 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-mysql2?arch=ppc64le&distro=redhat-9.1 | redhat |
rubygem-mysql2
|
< 0.5.4-1.module+el9.1.0+15737+76195479 | redhat-9.1 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-mysql2?arch=aarch64&distro=redhat-9.1 | redhat |
rubygem-mysql2
|
< 0.5.4-1.module+el9.1.0+15737+76195479 | redhat-9.1 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-mysql2-doc?distro=redhat-9.1 | redhat |
rubygem-mysql2-doc
|
< 0.5.4-1.module+el9.1.0+15737+76195479 | redhat-9.1 | ||
| Affected | pkg:rpm/redhat/rubygem-minitest?distro=redhat-9.3 | redhat |
rubygem-minitest
|
< 5.15.0-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-json?arch=x86_64&distro=redhat-9.3 | redhat |
rubygem-json
|
< 2.6.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-json?arch=s390x&distro=redhat-9.3 | redhat |
rubygem-json
|
< 2.6.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-json?arch=ppc64le&distro=redhat-9.3 | redhat |
rubygem-json
|
< 2.6.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-json?arch=i686&distro=redhat-9.3 | redhat |
rubygem-json
|
< 2.6.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | i686 | |
| Affected | pkg:rpm/redhat/rubygem-json?arch=aarch64&distro=redhat-9.3 | redhat |
rubygem-json
|
< 2.6.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-irb?distro=redhat-9.3 | redhat |
rubygem-irb
|
< 1.4.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-io-console?arch=x86_64&distro=redhat-9.3 | redhat |
rubygem-io-console
|
< 0.5.11-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-io-console?arch=s390x&distro=redhat-9.3 | redhat |
rubygem-io-console
|
< 0.5.11-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-io-console?arch=ppc64le&distro=redhat-9.3 | redhat |
rubygem-io-console
|
< 0.5.11-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-io-console?arch=i686&distro=redhat-9.3 | redhat |
rubygem-io-console
|
< 0.5.11-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | i686 | |
| Affected | pkg:rpm/redhat/rubygem-io-console?arch=aarch64&distro=redhat-9.3 | redhat |
rubygem-io-console
|
< 0.5.11-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | aarch64 | |
| Affected | pkg:rpm/redhat/rubygem-bundler?distro=redhat-9.3 | redhat |
rubygem-bundler
|
< 2.3.26-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/rubygem-bigdecimal?arch=x86_64&distro=redhat-9.3 | redhat |
rubygem-bigdecimal
|
< 3.1.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | x86_64 | |
| Affected | pkg:rpm/redhat/rubygem-bigdecimal?arch=s390x&distro=redhat-9.3 | redhat |
rubygem-bigdecimal
|
< 3.1.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | s390x | |
| Affected | pkg:rpm/redhat/rubygem-bigdecimal?arch=ppc64le&distro=redhat-9.3 | redhat |
rubygem-bigdecimal
|
< 3.1.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ppc64le | |
| Affected | pkg:rpm/redhat/rubygem-bigdecimal?arch=i686&distro=redhat-9.3 | redhat |
rubygem-bigdecimal
|
< 3.1.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | i686 | |
| Affected | pkg:rpm/redhat/rubygem-bigdecimal?arch=aarch64&distro=redhat-9.3 | redhat |
rubygem-bigdecimal
|
< 3.1.1-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | aarch64 | |
| Affected | pkg:rpm/redhat/ruby?arch=x86_64&distro=redhat-9.3 | redhat |
ruby
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | x86_64 | |
| Affected | pkg:rpm/redhat/ruby?arch=s390x&distro=redhat-9.3 | redhat |
ruby
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | s390x | |
| Affected | pkg:rpm/redhat/ruby?arch=ppc64le&distro=redhat-9.3 | redhat |
ruby
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ppc64le | |
| Affected | pkg:rpm/redhat/ruby?arch=i686&distro=redhat-9.3 | redhat |
ruby
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | i686 | |
| Affected | pkg:rpm/redhat/ruby?arch=aarch64&distro=redhat-9.3 | redhat |
ruby
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | aarch64 | |
| Affected | pkg:rpm/redhat/ruby-libs?arch=x86_64&distro=redhat-9.3 | redhat |
ruby-libs
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | x86_64 | |
| Affected | pkg:rpm/redhat/ruby-libs?arch=s390x&distro=redhat-9.3 | redhat |
ruby-libs
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | s390x | |
| Affected | pkg:rpm/redhat/ruby-libs?arch=ppc64le&distro=redhat-9.3 | redhat |
ruby-libs
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ppc64le | |
| Affected | pkg:rpm/redhat/ruby-libs?arch=i686&distro=redhat-9.3 | redhat |
ruby-libs
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | i686 | |
| Affected | pkg:rpm/redhat/ruby-libs?arch=aarch64&distro=redhat-9.3 | redhat |
ruby-libs
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | aarch64 | |
| Affected | pkg:rpm/redhat/ruby-doc?distro=redhat-9.3 | redhat |
ruby-doc
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/ruby-devel?arch=x86_64&distro=redhat-9.3 | redhat |
ruby-devel
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | x86_64 | |
| Affected | pkg:rpm/redhat/ruby-devel?arch=s390x&distro=redhat-9.3 | redhat |
ruby-devel
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | s390x | |
| Affected | pkg:rpm/redhat/ruby-devel?arch=ppc64le&distro=redhat-9.3 | redhat |
ruby-devel
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ppc64le | |
| Affected | pkg:rpm/redhat/ruby-devel?arch=i686&distro=redhat-9.3 | redhat |
ruby-devel
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | i686 | |
| Affected | pkg:rpm/redhat/ruby-devel?arch=aarch64&distro=redhat-9.3 | redhat |
ruby-devel
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | aarch64 | |
| Affected | pkg:rpm/redhat/ruby-default-gems?distro=redhat-9.3 | redhat |
ruby-default-gems
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ||
| Affected | pkg:rpm/redhat/ruby-bundled-gems?arch=x86_64&distro=redhat-9.3 | redhat |
ruby-bundled-gems
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | x86_64 | |
| Affected | pkg:rpm/redhat/ruby-bundled-gems?arch=s390x&distro=redhat-9.3 | redhat |
ruby-bundled-gems
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | s390x | |
| Affected | pkg:rpm/redhat/ruby-bundled-gems?arch=ppc64le&distro=redhat-9.3 | redhat |
ruby-bundled-gems
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | ppc64le | |
| Affected | pkg:rpm/redhat/ruby-bundled-gems?arch=i686&distro=redhat-9.3 | redhat |
ruby-bundled-gems
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | i686 | |
| Affected | pkg:rpm/redhat/ruby-bundled-gems?arch=aarch64&distro=redhat-9.3 | redhat |
ruby-bundled-gems
|
< 3.1.4-143.module+el9.3.0+21558+96b51efd | redhat-9.3 | aarch64 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |