Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 546
Alerts This Week
Warning Icon 1 546

Scientific Linux: SLSA-2018-3738-1 Important Ruby Security Fix

Scientific Large Esm H446
ruby: OpenSSL::X509::Name equality check does not work correctly (CVE-2018-16395) SL7 x86_64 ruby-2.0.0.648-34.el7_6.x86_64.rpm ruby-debuginfo-2.0.0.648-34.el7_6.i686.rpm ruby-debuginfo-2.0.0.648-34.el7_6.x86_64.rpm ruby-libs-2.0.0.648-34.el7_6.i686.rpm ruby-libs-2.0.0.648-34.el7_6.x86_64.rpm rubygem-bigdecimal-1.2.0-34.el7_6.x86_64.rpm rubygem-io-console-0.4.2-3 [More...]
Synopsis: Important: ruby security update
Advisory ID:       SLSA-2018:3738-1
Issue Date:        2018-11-30
CVE Numbers:       CVE-2018-16395
--

Security Fix(es):

* ruby: OpenSSL::X509::Name equality check does not work correctly
(CVE-2018-16395)
--

SL7
  x86_64
    ruby-2.0.0.648-34.el7_6.x86_64.rpm
    ruby-debuginfo-2.0.0.648-34.el7_6.i686.rpm
    ruby-debuginfo-2.0.0.648-34.el7_6.x86_64.rpm
    ruby-libs-2.0.0.648-34.el7_6.i686.rpm
    ruby-libs-2.0.0.648-34.el7_6.x86_64.rpm
    rubygem-bigdecimal-1.2.0-34.el7_6.x86_64.rpm
    rubygem-io-console-0.4.2-34.el7_6.x86_64.rpm
    rubygem-json-1.7.7-34.el7_6.x86_64.rpm
    rubygem-psych-2.0.0-34.el7_6.x86_64.rpm
    ruby-devel-2.0.0.648-34.el7_6.x86_64.rpm
    ruby-tcltk-2.0.0.648-34.el7_6.x86_64.rpm
    ruby-2.0.0.648-34.el7_6.src.rpm
  noarch
    ruby-irb-2.0.0.648-34.el7_6.noarch.rpm
    rubygem-rdoc-4.0.0-34.el7_6.noarch.rpm
    rubygems-2.0.14.1-34.el7_6.noarch.rpm
    ruby-doc-2.0.0.648-34.el7_6.noarch.rpm
    rubygem-minitest-4.3.2-34.el7_6.noarch.rpm
    rubygem-rake-0.9.6-34.el7_6.noarch.rpm
    rubygems-devel-2.0.14.1-34.el7_6.noarch.rpm

- Scientific Linux Development Team