Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found 6 articles for you...
89
security advisorycriticalFedoraFedora 39: 2023-4f0bb4ff5e Critical: Ruby On Rails Actionpack Issue
Ruby on Rails security upgrade: - Versions-7-0-7-2-6-1-7-6-have-been-released - incorrect file permissions on encrypted files. Exploit not known.. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2023-4f0bb4ff5e 2023-09-15 18:36:13.240099 -------------------------------------------------------------------------------- Name : rubygem-actionpack Product : Fedora 39 Version : 7.0.7.2 Release : 1.fc39 URL : https://rubyonrails.org/ Summary : Web-flow and rendering framework putting the VC in MVC (part of Rails) Description : Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling easy unit/integration testing that doesn't require a browser. -------------------------------------------------------------------------------- Update Information: Ruby on Rails security upgrade: - Versions-7-0-7-2-6-1-7-6-have-been-released - incorrect file permissions on encrypted files. Exploit not known. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 28 2023 Pavel Valena - 1:7.0.7.2-1 - Update to actionpack 7.0.7.2. -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2023-4f0bb4ff5e' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list --
Sep 15, 2023
•Critical
Fedora
202
security advisorysecurity issueimportant updateopenSUSE Leap 15.4: 2023:0444-1 Important ReDoS Issues in Actionpack
An update that fixes two vulnerabilities is now available.. SUSE Security Update: Security update for rubygem-actionpack-5_1 ______________________________________________________________________________ Announcement ID: SUSE-SU-2023:0444-1 Rating: important References: #1207451 #1207455 Cross-References: CVE-2023-22792 CVE-2023-22795 CVSS scores: CVE-2023-22792 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2023-22795 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: SUSE Linux Enterprise High Availability 15-SP1 SUSE Linux Enterprise High Availability 15-SP2 SUSE Linux Enterprise High Availability 15-SP3 SUSE Linux Enterprise High Availability 15-SP4 openSUSE Leap 15.4 ______________________________________________________________________________ An update that fixes two vulnerabilities is now available. Description: This update for rubygem-actionpack-5_1 fixes the following issues: - CVE-2023-22795: Fixed ReDoS in Action Dispatch cache (bsc#1207451). - CVE-2023-22792: Fixed ReDoS in Action Dispatch cookies (bnc#1207455). Patch Instructions: To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.4: zypper in -t patch openSUSE-SLE-15.4-2023-444=1 - SUSE Linux Enterprise High Availability 15-SP4: zypper in -t patch SUSE-SLE-Product-HA-15-SP4-2023-444=1 - SUSE Linux Enterprise High Availability 15-SP3: zypper in -t patch SUSE-SLE-Product-HA-15-SP3-2023-444=1 - SUSE Linux Enterprise High Availability 15-SP2: zypper in -t patch SUSE-SLE-Product-HA-15-SP2-2023-444=1 - SUSE Linux Enterprise High Availability 15-SP1: zypper in -t patchSUSE-SLE-Product-HA-15-SP1-2023-444=1 Package List: - openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.15.1 ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-150000.3.15.1 - SUSE Linux Enterprise High Availability 15-SP4 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.15.1 - SUSE Linux Enterprise High Availability 15-SP3 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.15.1 - SUSE Linux Enterprise High Availability 15-SP2 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.15.1 - SUSE Linux Enterprise High Availability 15-SP1 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-actionpack-5_1-5.1.4-150000.3.15.1 References: https://www.suse.com/security/cve/CVE-2023-22792.html https://www.suse.com/security/cve/CVE-2023-22795.html https://bugzilla.suse.com/1207451 https://bugzilla.suse.com/1207455 . Essential patch for rubygem-actionpack-5_1 addressing two significant security flaws in openSUSE and SUSE Linux Enterprise environments.. openSUSE Update, ReDoS Issue, actionpack Security Fix, Security Advisory. . Severity: Important. LinuxSecurity.com Team
Feb 17, 2023
•Important
OpenSUSE
197
security advisorycriticalcode executionDebian 9: DLA-2719-1 Critical: Code Execution Risk in Ruby Actionpack
ooooooo_q discovered that the actionpack_page-caching Ruby gem, a static page caching module for Rails, allows an attacker to write arbitrary files to a web server, potentially resulting in remote code execution if the attacker can write unescaped ERB to a view. . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-2719-1
Jul 23, 2021
•Critical
Debian LTS
202
security advisorysoftware updatepatchopenSUSE Leap 15.3: 2021:1759-1 Important: Actionpack Info Disclosure
An update that fixes one vulnerability is now available. . openSUSE Security Update: Security update for rubygem-actionpack-5_1 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:1759-1 Rating: important References: #1185715 Cross-References: CVE-2021-22885 CVSS scores: CVE-2021-22885 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N CVE-2021-22885 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Leap 15.3 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for rubygem-actionpack-5_1 fixes the following issues: - CVE-2021-22885: Fixed possible information disclosure / unintended method execution in Action Pack (bsc#1185715). Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2021-1759=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): ruby2.5-rubygem-actionpack-5_1-5.1.4-3.9.1 ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-3.9.1 References: https://www.suse.com/security/cve/CVE-2021-22885.html https://bugzilla.suse.com/1185715 . Essential patch released for rubygem-actionpack-5_1 targeting possible data exposure vulnerabilities. Urgent action required!. openSUSE Security,Rubygem,Actionpack,Software Patch,Security Update. . Severity: Important. LinuxSecurity.com Team
Jul 11, 2021
•Important
OpenSUSE
202
security advisoryupdateimportantopenSUSE Leap 15.2: Security Update on ActionPack Info Disclosure
An update that fixes one vulnerability is now available. . openSUSE Security Update: Security update for rubygem-actionpack-5_1 ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:0797-1 Rating: important References: #1185715 Cross-References: CVE-2021-22885 CVSS scores: CVE-2021-22885 (SUSE): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Affected Products: openSUSE Leap 15.2 ______________________________________________________________________________ An update that fixes one vulnerability is now available. Description: This update for rubygem-actionpack-5_1 fixes the following issues: - CVE-2021-22885: Fixed possible information disclosure / unintended method execution in Action Pack (bsc#1185715). This update was imported from the SUSE:SLE-15:Update update project. Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.2: zypper in -t patch openSUSE-2021-797=1 Package List: - openSUSE Leap 15.2 (x86_64): ruby2.5-rubygem-actionpack-5_1-5.1.4-lp152.5.6.1 ruby2.5-rubygem-actionpack-doc-5_1-5.1.4-lp152.5.6.1 References: https://www.suse.com/security/cve/CVE-2021-22885.html https://bugzilla.suse.com/1185715 . This release resolves a critical vulnerability in rubygem-actionpack-5_2, improving overall safety on Fedora systems.. openSUSE Security, ActionPack Update, Information Disclosure Fix, Ruby Gem Security. . Severity: Important. LinuxSecurity.com Team
May 26, 2021
•Important
OpenSUSE
98
security advisorydenial of servicered hatRedHat: RHSA-2019:1147-01 Important: Actionpack DoS & Directory Traversal
An update for rh-ror50-rubygem-actionpack is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score,. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Important: rh-ror50-rubygem-actionpack security update Advisory ID: RHSA-2019:1147-01 Product: Red Hat Software Collections Advisory URL: https://access.redhat.com/errata/RHSA-2019:1147 Issue date: 2019-05-13 CVE Names: CVE-2019-5418 CVE-2019-5419 ==================================================================== 1. Summary: An update for rh-ror50-rubygem-actionpack is now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.6) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7) - noarch 3. Description: Ruby on Rails is a model-view-controller (MVC) framework for web application development. Action Pack implements the controller and the view components. Security Fix(es): * rubygem-actionpack: render file directory traversal in ActionView (CVE-2019-5418) * rubygem-actionpack: denial of service vulnerability in Action View (CVE-2019-5419) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1689159 - CVE-2019-5418 rubygem-actionpack: render file directory traversal in Action View 1689160 - CVE-2019-5419 rubygem-actionpack: denial of service vulnerability in Action View 6. Package List: Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6): Source: rh-ror50-rubygem-actionpack-5.0.1-2.el6.src.rpm noarch: rh-ror50-rubygem-actionpack-5.0.1-2.el6.noarch.rpm rh-ror50-rubygem-actionpack-doc-5.0.1-2.el6.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6): Source: rh-ror50-rubygem-actionpack-5.0.1-2.el6.src.rpm noarch: rh-ror50-rubygem-actionpack-5.0.1-2.el6.noarch.rpm rh-ror50-rubygem-actionpack-doc-5.0.1-2.el6.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7): Source: rh-ror50-rubygem-actionpack-5.0.1-2.el7.src.rpm noarch: rh-ror50-rubygem-actionpack-5.0.1-2.el7.noarch.rpm rh-ror50-rubygem-actionpack-doc-5.0.1-2.el7.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.4): Source: rh-ror50-rubygem-actionpack-5.0.1-2.el7.src.rpm noarch: rh-ror50-rubygem-actionpack-5.0.1-2.el7.noarch.rpm rh-ror50-rubygem-actionpack-doc-5.0.1-2.el7.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.5): Source: rh-ror50-rubygem-actionpack-5.0.1-2.el7.src.rpm noarch: rh-ror50-rubygem-actionpack-5.0.1-2.el7.noarch.rpm rh-ror50-rubygem-actionpack-doc-5.0.1-2.el7.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v.7.6): Source: rh-ror50-rubygem-actionpack-5.0.1-2.el7.src.rpm noarch: rh-ror50-rubygem-actionpack-5.0.1-2.el7.noarch.rpm rh-ror50-rubygem-actionpack-doc-5.0.1-2.el7.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7): Source: rh-ror50-rubygem-actionpack-5.0.1-2.el7.src.rpm noarch: rh-ror50-rubygem-actionpack-5.0.1-2.el7.noarch.rpm rh-ror50-rubygem-actionpack-doc-5.0.1-2.el7.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7. References: https://access.redhat.com/security/cve/CVE-2019-5418 https://access.redhat.com/security/cve/CVE-2019-5419 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2019 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBXNkw5dzjgjWX9erEAQhiHBAAiUDdS68e/pkQQ4YDneLBLdLOmZaoPZqa E8BkpklNIsYBx3x6PUiky9PDkdd8dkHO9f4I1dl55irKlqrg1hKJUBMsm2LMHUTf o7/QXoHIRF8HP995GBNmpChGAbE9CtZI8VNbZh6kgNmpeCAYRwoBI7e6TSmJ6aUj LzZpw3dvy8cUNkuBJiV/4ZDe+a0s/X0BS91OlCQ7J8DeXyNlFddTNT2ic9nwmmLy ajvvexoSr1tVaMAeeotfuGYxFOUVAzuVgH5fIi5NwpHQn86alyqjYr+e1XQsLOGH Gf7Njb5+aenqjzXXjrUoplUJEMCD885mdECTsM3WwFRaVBt+F5LuO+EBN034nWp9 r8EYxWO0+f9IDTUV7ndCDpmCz4EnfBL7IR2EwzXtXKyBQdoBrEXZW//gf/o+0xMg 7U+omBp4JuC6lNwlhQY2ieCY8Aq/DttP6M1tDh0kT7uQNIk9Fmz0qVH9aTkRS6T3 +/3qglkQN58WY2woQoU5hetcjdGf8kCpHuzj57PbgHq7lJuUH5jEC8CJOTuD1tw+ 0CtYU41Yw5SI5//54DKU/eSK0bAzHlgTAWmhxJsiSkQnWJHiw2+tt0ELNCxh/LxR UK1JPY++4jWQCp8iGioEmDAcSSRKYBb1O59OwH5weQ7/IwCzDLu2qnWLIPdxbLQI p60qNG9Boyk=Vfif -----END PGP SIGNATURE----- -- RHSA-announce mailing list
May 13, 2019
•Important
Red Hat
89
security advisoryupdateFedoraFedora 22: Fix Code Injection For Rubygem Actionpack - Critical Update
* Fix rails-html-sanitizer v1.0.3 compatibility. * Fix code injection vulnerability (CVE-2016-2098).. -------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2016-3954061e32 2016-03-17 16:03:22.861593 -------------------------------------------------------------------------------- Name : rubygem-actionpack Product : Fedora 22 Version : 4.2.0 Release : 4.fc22 URL : https://rubyonrails.org/ Summary : Web-flow and rendering framework putting the VC in MVC Description : Eases web-request routing, handling, and response as a half-way front, half-way page controller. Implemented with specific emphasis on enabling easy unit/integration testing that doesn't require a browser. -------------------------------------------------------------------------------- Update Information: * Fix rails-html-sanitizer v1.0.3 compatibility. * Fix code injection vulnerability (CVE-2016-2098). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310054 - CVE-2016-2098 rubygem-actionview, rubygem-actionpack: code injection vulnerability in Action View https://bugzilla.redhat.com/show_bug.cgi?id=1310054 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update rubygem-actionpack' at the command line. For more information, refer to "Managing Software with yum", available at . All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ -------------------------------------------------------------------------------- _______________________________________________ package-announce mailing list
Mar 17, 2016
•Critical
Fedora
98
security advisoryred hatrubyCentOS: CSA-2021:1123-01 Critical: php72 Service Disruption
Updated ruby193-rubygem-actionpack and ruby193-rubygem-activerecord packages that fix multiple security issues are now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having Important security. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ==================================================================== Red Hat Security Advisory Synopsis: Important: ruby193 security update Advisory ID: RHSA-2016:0455-01 Product: Red Hat Software Collections Advisory URL: https://access.redhat.com/errata/RHSA-2016:0455.html Issue date: 2016-03-15 CVE Names: CVE-2015-7576 CVE-2015-7577 CVE-2016-0751 CVE-2016-0752 CVE-2016-2097 CVE-2016-2098 ==================================================================== 1. Summary: Updated ruby193-rubygem-actionpack and ruby193-rubygem-activerecord packages that fix multiple security issues are now available for Red Hat Software Collections. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section. 2. Relevant releases/architectures: Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.6) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.1) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.2) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6) - noarch Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7) - noarch 3. Description: The ruby193 collection providesRuby version 1.9.3 and Ruby on Rails version 3.2. Ruby on Rails is a model-view-controller (MVC) framework for web application development. The following issues were corrected in rubygem-actionpack: Multiple directory traversal flaws were found in the way the Action View component searched for templates for rendering. If an application passed untrusted input to the 'render' method, a remote, unauthenticated attacker could use these flaws to render unexpected files and, possibly, execute arbitrary code. (CVE-2016-0752, CVE-2016-2097) A code injection flaw was found in the way the Action View component searched for templates for rendering. If an application passed untrusted input to the 'render' method, a remote, unauthenticated attacker could use this flaw to execute arbitrary code. (CVE-2016-2098) A flaw was found in the way the Action Pack component performed MIME type lookups. Since queries were cached in a global cache of MIME types, an attacker could use this flaw to grow the cache indefinitely, potentially resulting in a denial of service. (CVE-2016-0751) A flaw was found in the way the Action Controller component compared user names and passwords when performing HTTP basic authentication. Time taken to compare strings could differ depending on input, possibly allowing a remote attacker to determine valid user names and passwords using a timing attack. (CVE-2015-7576) The following issue was corrected in rubygem-activerecord: A flaw was found in the Active Record component's handling of nested attributes in combination with the destroy flag. An attacker could possibly use this flaw to set attributes to invalid values or clear all attributes. (CVE-2015-7577) Red Hat would like to thank the Ruby on Rails project for reporting these issues. Upstream acknowledges John Poulin as the original reporter of CVE-2016-0752, Jyoti Singh and Tobias Kraze (makandra) as original reporters of CVE-2016-2097, Tobias Kraze (makandra) and joernchen (Phenoelit) as original reporters of CVE-2016-2098, Aaron Patterson(Red Hat) as the original reporter of CVE-2016-0751, Daniel Waterworth as the original reporter of CVE-2015-7576, and Justin Coyne as the original reporter of CVE-2015-7577. All ruby193 collection rubygem-actionpack and rubygem-activerecord packages users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. All running applications using the ruby193 collection must be restarted for this update to take effect. 4. Solution: Before applying this update, make sure all previously released errata relevant to your system have been applied. For details on how to apply this update, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1301933 - CVE-2015-7576 rubygem-actionpack: Timing attack vulnerability in basic authentication in Action Controller 1301946 - CVE-2016-0751 rubygem-actionpack: possible object leak and denial of service attack in Action Pack 1301957 - CVE-2015-7577 rubygem-activerecord: Nested attributes rejection proc bypass in Active Record 1301963 - CVE-2016-0752 rubygem-actionview, rubygem-actionpack: directory traversal flaw in Action View 1310043 - CVE-2016-2097 rubygem-actionview, rubygem-actionpack: directory traversal in Action View, incomplete CVE-2016-0752 fix 1310054 - CVE-2016-2098 rubygem-actionview, rubygem-actionpack: code injection vulnerability in Action View 6. Package List: Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 6): Source: ruby193-rubygem-actionpack-3.2.8-16.el6.src.rpm ruby193-rubygem-activerecord-3.2.8-11.el6.src.rpm ruby193-rubygem-activesupport-3.2.8-6.el6.src.rpm noarch: ruby193-rubygem-actionpack-3.2.8-16.el6.noarch.rpm ruby193-rubygem-actionpack-doc-3.2.8-16.el6.noarch.rpm ruby193-rubygem-activerecord-3.2.8-11.el6.noarch.rpm ruby193-rubygem-activerecord-doc-3.2.8-11.el6.noarch.rpm ruby193-rubygem-activesupport-3.2.8-6.el6.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v.6.6): Source: ruby193-rubygem-actionpack-3.2.8-16.el6.src.rpm ruby193-rubygem-activerecord-3.2.8-11.el6.src.rpm ruby193-rubygem-activesupport-3.2.8-6.el6.src.rpm noarch: ruby193-rubygem-actionpack-3.2.8-16.el6.noarch.rpm ruby193-rubygem-actionpack-doc-3.2.8-16.el6.noarch.rpm ruby193-rubygem-activerecord-3.2.8-11.el6.noarch.rpm ruby193-rubygem-activerecord-doc-3.2.8-11.el6.noarch.rpm ruby193-rubygem-activesupport-3.2.8-6.el6.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 6.7): Source: ruby193-rubygem-actionpack-3.2.8-16.el6.src.rpm ruby193-rubygem-activerecord-3.2.8-11.el6.src.rpm ruby193-rubygem-activesupport-3.2.8-6.el6.src.rpm noarch: ruby193-rubygem-actionpack-3.2.8-16.el6.noarch.rpm ruby193-rubygem-actionpack-doc-3.2.8-16.el6.noarch.rpm ruby193-rubygem-activerecord-3.2.8-11.el6.noarch.rpm ruby193-rubygem-activerecord-doc-3.2.8-11.el6.noarch.rpm ruby193-rubygem-activesupport-3.2.8-6.el6.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 6): Source: ruby193-rubygem-actionpack-3.2.8-16.el6.src.rpm ruby193-rubygem-activerecord-3.2.8-11.el6.src.rpm ruby193-rubygem-activesupport-3.2.8-6.el6.src.rpm noarch: ruby193-rubygem-actionpack-3.2.8-16.el6.noarch.rpm ruby193-rubygem-actionpack-doc-3.2.8-16.el6.noarch.rpm ruby193-rubygem-activerecord-3.2.8-11.el6.noarch.rpm ruby193-rubygem-activerecord-doc-3.2.8-11.el6.noarch.rpm ruby193-rubygem-activesupport-3.2.8-6.el6.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server (v. 7): Source: ruby193-rubygem-actionpack-3.2.8-16.el7.src.rpm ruby193-rubygem-activerecord-3.2.8-11.el7.src.rpm ruby193-rubygem-activesupport-3.2.8-6.el7.src.rpm noarch: ruby193-rubygem-actionpack-3.2.8-16.el7.noarch.rpm ruby193-rubygem-actionpack-doc-3.2.8-16.el7.noarch.rpm ruby193-rubygem-activerecord-3.2.8-11.el7.noarch.rpm ruby193-rubygem-activerecord-doc-3.2.8-11.el7.noarch.rpm ruby193-rubygem-activesupport-3.2.8-6.el7.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux ServerEUS (v. 7.1): Source: ruby193-rubygem-actionpack-3.2.8-16.el7.src.rpm ruby193-rubygem-activerecord-3.2.8-11.el7.src.rpm ruby193-rubygem-activesupport-3.2.8-6.el7.src.rpm noarch: ruby193-rubygem-actionpack-3.2.8-16.el7.noarch.rpm ruby193-rubygem-actionpack-doc-3.2.8-16.el7.noarch.rpm ruby193-rubygem-activerecord-3.2.8-11.el7.noarch.rpm ruby193-rubygem-activerecord-doc-3.2.8-11.el7.noarch.rpm ruby193-rubygem-activesupport-3.2.8-6.el7.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Server EUS (v. 7.2): Source: ruby193-rubygem-actionpack-3.2.8-16.el7.src.rpm ruby193-rubygem-activerecord-3.2.8-11.el7.src.rpm ruby193-rubygem-activesupport-3.2.8-6.el7.src.rpm noarch: ruby193-rubygem-actionpack-3.2.8-16.el7.noarch.rpm ruby193-rubygem-actionpack-doc-3.2.8-16.el7.noarch.rpm ruby193-rubygem-activerecord-3.2.8-11.el7.noarch.rpm ruby193-rubygem-activerecord-doc-3.2.8-11.el7.noarch.rpm ruby193-rubygem-activesupport-3.2.8-6.el7.noarch.rpm Red Hat Software Collections for Red Hat Enterprise Linux Workstation (v. 7): Source: ruby193-rubygem-actionpack-3.2.8-16.el7.src.rpm ruby193-rubygem-activerecord-3.2.8-11.el7.src.rpm ruby193-rubygem-activesupport-3.2.8-6.el7.src.rpm noarch: ruby193-rubygem-actionpack-3.2.8-16.el7.noarch.rpm ruby193-rubygem-actionpack-doc-3.2.8-16.el7.noarch.rpm ruby193-rubygem-activerecord-3.2.8-11.el7.noarch.rpm ruby193-rubygem-activerecord-doc-3.2.8-11.el7.noarch.rpm ruby193-rubygem-activesupport-3.2.8-6.el7.noarch.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key 7.References: https://access.redhat.com/security/cve/CVE-2015-7576 https://access.redhat.com/security/cve/CVE-2015-7577 https://access.redhat.com/security/cve/CVE-2016-0751 https://access.redhat.com/security/cve/CVE-2016-0752 https://access.redhat.com/security/cve/CVE-2016-2097 https://access.redhat.com/security/cve/CVE-2016-2098 https://access.redhat.com/security/updates/classification#important 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact Copyright 2016 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iD8DBQFW6HmzXlSAg2UNWIIRAlodAJ4xsvfnvT+4dXQg6k8tXlybsUKMewCdHQ5U VaJQwkO55rBB9+BqLsW72aU=l7E9 -----END PGP SIGNATURE----- -- Enterprise-watch-list mailing list
Mar 15, 2016
•Important
Red Hat
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!