Alerts This Week
Warning Icon 1 1,053
Alerts This Week
Warning Icon 1 1,053

Oracle Linux 9 ELSA-2026-18039 Ruby Important Arbitrary Code Exec

oracle
Calendar Grey May 20, 2026
Oracle Linux Logo Esm H88
Learn about important updates for Oracle Linux 9 regarding critical Ruby security issues and fixes.
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:

Summary

[3.0.7-166] - Fix arbitrary code execution via deserialization bypass in ERB. (CVE-2026-41316) Resolves: RHEL-171254

Topics%20covered

Topics Covered

security advisory remote access arbitrary code execution important ruby Oracle

SRPMs

http://oss.oracle.com/ol9/SRPMS-updates/ruby-3.0.7-166.el9_7.src.rpm

x86_64

ruby-3.0.7-166.el9_7.i686.rpm ruby-3.0.7-166.el9_7.x86_64.rpm ruby-default-gems-3.0.7-166.el9_7.noarch.rpm ruby-devel-3.0.7-166.el9_7.i686.rpm ruby-devel-3.0.7-166.el9_7.x86_64.rpm ruby-doc-3.0.7-166.el9_7.noarch.rpm ruby-libs-3.0.7-166.el9_7.i686.rpm ruby-libs-3.0.7-166.el9_7.x86_64.rpm rubygem-bigdecimal-3.0.0-166.el9_7.x86_64.rpm rubygem-bundler-2.2.33-166.el9_7.noarch.rpm rubygem-io-console-0.5.7-166.el9_7.x86_64.rpm rubygem-irb-1.3.5-166.el9_7.noarch.rpm rubygem-json-2.5.1-166.el9_7.x86_64.rpm rubygem-minitest-5.14.2-166.el9_7.noarch.rpm rubygem-power_assert-1.2.1-166.el9_7.noarch.rpm rubygem-psych-3.3.2-166.el9_7.x86_64.rpm rubygem-rake-13.0.3-166.el9_7.noarch.rpm rubygem-rbs-1.4.0-166.el9_7.noarch.rpm rubygem-rdoc-6.3.4.1-166.el9_7.noarch.rpm rubygem-rexml-3.2.5-166.el9_7.noarch.rpm rubygem-rss-0.2.9-166.el9_7.noarch.rpm rubygem-test-unit-3.3.7-166.el9_7.noarch.rpm rubygem-typeprof-0.15.2-166.el9_7.noarch.rpm rubygems-3.2.33-166.el9_7.noarch.rpm rubygems-devel-3.2.33-166.el9_...

Read the Full Advisory

aarch64

ruby-3.0.7-166.el9_7.aarch64.rpm ruby-default-gems-3.0.7-166.el9_7.noarch.rpm ruby-devel-3.0.7-166.el9_7.aarch64.rpm ruby-doc-3.0.7-166.el9_7.noarch.rpm ruby-libs-3.0.7-166.el9_7.aarch64.rpm rubygem-bigdecimal-3.0.0-166.el9_7.aarch64.rpm rubygem-bundler-2.2.33-166.el9_7.noarch.rpm rubygem-io-console-0.5.7-166.el9_7.aarch64.rpm rubygem-irb-1.3.5-166.el9_7.noarch.rpm rubygem-json-2.5.1-166.el9_7.aarch64.rpm rubygem-minitest-5.14.2-166.el9_7.noarch.rpm rubygem-power_assert-1.2.1-166.el9_7.noarch.rpm rubygem-psych-3.3.2-166.el9_7.aarch64.rpm rubygem-rake-13.0.3-166.el9_7.noarch.rpm rubygem-rbs-1.4.0-166.el9_7.noarch.rpm rubygem-rdoc-6.3.4.1-166.el9_7.noarch.rpm rubygem-rexml-3.2.5-166.el9_7.noarch.rpm rubygem-rss-0.2.9-166.el9_7.noarch.rpm rubygem-test-unit-3.3.7-166.el9_7.noarch.rpm rubygem-typeprof-0.15.2-166.el9_7.noarch.rpm rubygems-3.2.33-166.el9_7.noarch.rpm rubygems-devel-3.2.33-166.el9_7.noarch.rpm

Severity
important
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2026-41316

Topics%20covered

Topics Covered

security advisory remote access arbitrary code execution important ruby Oracle

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here