Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

Oracle Linux 8 ELSA-2024-1431 Moderate: Ruby HTTP Response Splitting Fix

oracle
Calendar Grey March 21, 2024
Oracle Linux Logo Esm H88
Oracle Linux 8 has rolled out updates that focus on security improvements and enhancements for Python 3.9. For detailed access information and solutions to various challenges, refer here.
The following updated rpms for Oracle Linux 8 have been uploaded to the Unbreakable Linux Network:

Summary

ruby [3.1.4-142] - Upgrade to Ruby 3.1.4. Resolves: RHEL-28565 - Fix HTTP response splitting in CGI. Resolves: RHEL-28564 - Fix ReDos vulnerability in URI. Resolves: RHEL-28567 Resolves: RHEL-28576 - Fix ReDos vulnerability in Time. Resolves: RHEL-28566 - Make RDoc soft dependency in IRB. Resolves: RHEL-28569 rubygem-abrt [0.4.0-1] - Update to abrt 0.4.0. Resolves: rhbz#1842476 rubygem-mysql2 [0.5.3-3] - Fix SSL related test failure by backporting Fedora commit . Related: RHEL-28565 rubygem-pg [1.3.2-1] - Update to pg 1.3.2 by merging Fedora rawhide branch (commit: 39bbd1b) Resolves: rhbz#2063772

Topics%20covered

Topics Covered

security advisory moderate http response splitting oracle linux ruby fix

SRPMs

https://oss.oracle.com:443/ol8/SRPMS-updates//ruby-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.src.rpm https://oss.oracle.com:443/ol8/SRPMS-updates//rubygem-abrt-0.4.0-1.module+el8.9.0+90182+7bdfc9e5.src.rpm https://oss.oracle.com:443/ol8/SRPMS-updates//rubygem-mysql2-0.5.3-3.module+el8.9.0+90182+7bdfc9e5.src.rpm https://oss.oracle.com:443/ol8/SRPMS-updates//rubygem-pg-1.3.2-1.module+el8.9.0+90182+7bdfc9e5.src.rpm

x86_64

ruby-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.i686.rpm ruby-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.x86_64.rpm ruby-bundled-gems-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.i686.rpm ruby-bundled-gems-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.x86_64.rpm ruby-default-gems-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm ruby-devel-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.i686.rpm ruby-devel-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.x86_64.rpm ruby-doc-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-abrt-0.4.0-1.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-abrt-doc-0.4.0-1.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-bigdecimal-3.1.1-142.module+el8.9.0+90182+7bdfc9e5.i686.rpm rubygem-bigdecimal-3.1.1-142.module+el8.9.0+90182+7bdfc9e5.x86_64.rpm rubygem-bundler-2.3.26-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-io-console-0.5.11-142.module+el8.9.0+90182+7bdfc9e5.i686.rpm rubygem-io-console-0.5.11-142.module+el8.9.0+90182+7bdfc9e5.x86_64.rpm rubygem-irb-1.4.1-142.modu...

Read the Full Advisory

aarch64

ruby-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm ruby-bundled-gems-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm ruby-default-gems-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm ruby-devel-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm ruby-doc-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-abrt-0.4.0-1.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-abrt-doc-0.4.0-1.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-bigdecimal-3.1.1-142.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm rubygem-bundler-2.3.26-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-io-console-0.5.11-142.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm rubygem-irb-1.4.1-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-json-2.6.1-142.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm rubygem-minitest-5.15.0-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-mysql2-0.5.3-3.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm rubygem-mysql2-doc-0.5.3-3.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-pg-1.3.2-1.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm rubygem-pg-doc-1.3.2-1.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-power_assert-2.0.1-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-psych-4.0.4-142.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm rubygem-rake-13.0.6-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-rbs-2.7.0-142.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm rubygem-rdoc-6.4.0-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-rexml-3.2.5-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-rss-0.2.9-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygems-3.3.26-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygems-devel-3.3.26-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-test-unit-3.5.3-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm rubygem-typeprof-0.21.3-142.module+el8.9.0+90182+7bdfc9e5.noarch.rpm ruby-libs-3.1.4-142.module+el8.9.0+90182+7bdfc9e5.aarch64.rpm

Severity
important
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2021-33621 CVE-2023-28755 CVE-2023-28756 CVE-2023-36617

Topics%20covered

Topics Covered

security advisory moderate http response splitting oracle linux ruby fix

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here