Lucene search

Moderate: ruby security update

🗓️ 11 Jun 2024 00:00:00Reported by AlmaLinuxType

almalinux🔗 errata.almalinux.org👁 32 Views

Moderate: Ruby security update. Upgraded to version 3.0. Fixes HTTP response splitting, ReDoS vulnerabilities, buffer overread, RCE, and memory address read vulnerabilities

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 199
OSV	RHSA-2024:3838 Red Hat Security Advisory: ruby security update	16 Sep 202419:18	–	osv
OSV	ALSA-2024:3838 Moderate: ruby security update	11 Jun 202400:00	–	osv
OSV	RHSA-2024:3500 Red Hat Security Advisory: ruby:3.0 security update	16 Sep 202419:17	–	osv
OSV	ALSA-2024:3500 Moderate: ruby:3.0 security update	30 May 202400:00	–	osv
OSV	DLA-3858-1 ruby2.7 - security update	2 Sep 202400:00	–	osv
OSV	RHSA-2024:3546 Red Hat Security Advisory: ruby:3.1 security, bug fix, and enhancement update	16 Sep 202419:18	–	osv
OSV	DSA-5677-1 ruby3.1 - security update	3 May 202400:00	–	osv
OSV	ALSA-2024:3670 Moderate: ruby:3.3 security, bug fix, and enhancement update	6 Jun 202400:00	–	osv
OSV	MGASA-2024-0160 Updated ruby packages fix security vulnerabilities	9 May 202402:40	–	osv
OSV	RHSA-2024:3668 Red Hat Security Advisory: ruby:3.1 security, bug fix, and enhancement update	16 Sep 202419:18	–	osv

Source	Link
access	www.access.redhat.com/errata/RHSA-2024:3838
access	www.access.redhat.com/security/cve/CVE-2021-33621
access	www.access.redhat.com/security/cve/CVE-2023-28755
access	www.access.redhat.com/security/cve/CVE-2023-28756
access	www.access.redhat.com/security/cve/CVE-2024-27280
access	www.access.redhat.com/security/cve/CVE-2024-27281
access	www.access.redhat.com/security/cve/CVE-2024-27282
bugzilla	www.bugzilla.redhat.com/2149706
bugzilla	www.bugzilla.redhat.com/2184059
bugzilla	www.bugzilla.redhat.com/2184061

OS	OS Version	Architecture	Package	Package Version	Filename
almalinux	9	noarch	rubygem-rbs	1.4.0-162.el9_4	rubygem-rbs-1.4.0-162.el9_4.noarch.rpm
almalinux	9	noarch	rubygem-irb	1.3.5-162.el9_4	rubygem-irb-1.3.5-162.el9_4.noarch.rpm
almalinux	9	noarch	rubygem-rss	0.2.9-162.el9_4	rubygem-rss-0.2.9-162.el9_4.noarch.rpm
almalinux	9	i686	ruby-libs	3.0.7-162.el9_4	ruby-libs-3.0.7-162.el9_4.i686.rpm
almalinux	9	i686	ruby-devel	3.0.7-162.el9_4	ruby-devel-3.0.7-162.el9_4.i686.rpm
almalinux	9	noarch	rubygems	3.2.33-162.el9_4	rubygems-3.2.33-162.el9_4.noarch.rpm
almalinux	9	noarch	rubygem-rake	13.0.3-162.el9_4	rubygem-rake-13.0.3-162.el9_4.noarch.rpm
almalinux	9	noarch	rubygem-bundler	2.2.33-162.el9_4	rubygem-bundler-2.2.33-162.el9_4.noarch.rpm
almalinux	9	noarch	rubygem-typeprof	0.15.2-162.el9_4	rubygem-typeprof-0.15.2-162.el9_4.noarch.rpm
almalinux	9	noarch	rubygem-rdoc	6.3.4.1-162.el9_4	rubygem-rdoc-6.3.4.1-162.el9_4.noarch.rpm

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

11 Jun 2024 00:00Current

9High risk

Vulners AI Score9

CVSS39.8

EPSS0.02001

SSVC