Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Fedora 39: 2023-8e120b1c63 High Rubygem-ActiveSupport Security Flaw

fedora
Calendar Grey September 15, 2023
Dist Fedora Esm H88
Update the rubygem-railties package on Fedora 39 to rectify the improper file permissions associated with encrypted files. No exploitation method is currently identified.
Ruby on Rails security upgrade: - Versions-7-0-7-2-6-1-7-6-have-been-released - incorrect file permissions on encrypted files

Summary

Rails internals: application bootup, plugins, generators, and rake tasks.

Railties is responsible to glue all frameworks together. Overall, it:

* handles all the bootstrapping process for a Rails application;

* manages rails command line interface;

* provides Rails generators core;

Update Information:

Ruby on Rails security upgrade: - Versions-7-0-7-2-6-1-7-6-have-been-released - incorrect file permissions on encrypted files. Exploit not known.

Change Log

* Mon Aug 28 2023 Pavel Valena - 7.0.7.2-1 - Update to railties 7.0.7.2.

References

Fedora Update Notification FEDORA-2023-4f0bb4ff5e 2023-09-15 18:36:13.240099 Name : rubygem-railties Product : Fedora 39 Version : 7.0.7.2 Release : 1.fc39 URL : https://rubyonrails.org/ Summary : Tools for creating, working with, and running Rails applications Description : Rails internals: application bootup, plugins, generators, and rake tasks. Railties is responsible to glue all frameworks together. Overall, it: * handles all the bootstrapping process for a Rails application; * manages rails command line interface; * provides Rails generators core;

Update Instructions

This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-4f0bb4ff5e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html

Name: rubygem-railties
Product: Fedora 39
Version: 7.0.7.2
Release: 1.fc39
Summary: Tools for creating, working with, and running Rails applications

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here