Explore top 10 tips to secure your open-source projects now. Read More
×Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in Perl). It is simple,
straight-forward, and extensible.
Update Information:
Ruby 3.4.10 is released. This new version contains severay security bug fixes in zlib, net-imap and erb..
* Wed Jul 8 2026 Mamoru TASAKA
[ 1 ] Bug #2463216 - CVE-2026-41316 ruby: ERB: Arbitrary code execution via deserialization bypass [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2463216
[ 2 ] Bug #2484324 - CVE-2026-42245 ruby: Net::IMAP: Denial of Service via crafted IMAP responses [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2484324
[ 3 ] Bug #2487319 - CVE-2026-42258 ruby: Net::IMAP: IMAP Command Injection via Symbol Arguments [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2487319
[ 4 ] Bug #2492090 - CVE-2026-42246 ruby: Net::IMAP: Information disclosure via man-in-the-middle attack bypassing TLS [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=2492090
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2026-7b7c2b373e' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
Get the latest Linux and open source security news straight to your inbox.