Oval Definition:oval:com.redhat.rhsa:def:20226585
Revision Date:2022-09-20Version:635
Title:RHSA-2022:6585: ruby security, bug fix, and enhancement update (Moderate)
Description:Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.

  • The following packages have been upgraded to a later upstream version: ruby (3.0.4). (BZ#2109428)

    Security Fix(es):

  • Ruby: Double free in Regexp compilation (CVE-2022-28738)

  • Ruby: Buffer overrun in String-to-Float conversion (CVE-2022-28739)

    For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
    • Family:unixClass:patch
    Status:Reference(s):CVE-2022-28738
    CVE-2022-28739
    RHSA-2022:6585
    Platform(s):Red Hat Enterprise Linux 9
    		Product(s):
    Definition Synopsis
  • Red Hat Enterprise Linux must be installed
  • OR Package Information
  • Red Hat Enterprise Linux 9 is installed
  • AND
  • ruby is earlier than 0:3.0.4-160.el9_0
  • AND ruby is signed with Red Hat redhatrelease2 key
  • ruby-default-gems is earlier than 0:3.0.4-160.el9_0
  • AND ruby-default-gems is signed with Red Hat redhatrelease2 key
  • ruby-devel is earlier than 0:3.0.4-160.el9_0
  • AND ruby-devel is signed with Red Hat redhatrelease2 key
  • ruby-doc is earlier than 0:3.0.4-160.el9_0
  • AND ruby-doc is signed with Red Hat redhatrelease2 key
  • ruby-libs is earlier than 0:3.0.4-160.el9_0
  • AND ruby-libs is signed with Red Hat redhatrelease2 key
  • rubygem-bigdecimal is earlier than 0:3.0.0-160.el9_0
  • AND rubygem-bigdecimal is signed with Red Hat redhatrelease2 key
  • rubygem-bundler is earlier than 0:2.2.33-160.el9_0
  • AND rubygem-bundler is signed with Red Hat redhatrelease2 key
  • rubygem-io-console is earlier than 0:0.5.7-160.el9_0
  • AND rubygem-io-console is signed with Red Hat redhatrelease2 key
  • rubygem-irb is earlier than 0:1.3.5-160.el9_0
  • AND rubygem-irb is signed with Red Hat redhatrelease2 key
  • rubygem-json is earlier than 0:2.5.1-160.el9_0
  • AND rubygem-json is signed with Red Hat redhatrelease2 key
  • rubygem-minitest is earlier than 0:5.14.2-160.el9_0
  • AND rubygem-minitest is signed with Red Hat redhatrelease2 key
  • rubygem-power_assert is earlier than 0:1.2.0-160.el9_0
  • AND rubygem-power_assert is signed with Red Hat redhatrelease2 key
  • rubygem-psych is earlier than 0:3.3.2-160.el9_0
  • AND rubygem-psych is signed with Red Hat redhatrelease2 key
  • rubygem-rake is earlier than 0:13.0.3-160.el9_0
  • AND rubygem-rake is signed with Red Hat redhatrelease2 key
  • rubygem-rbs is earlier than 0:1.4.0-160.el9_0
  • AND rubygem-rbs is signed with Red Hat redhatrelease2 key
  • rubygem-rdoc is earlier than 0:6.3.3-160.el9_0
  • AND rubygem-rdoc is signed with Red Hat redhatrelease2 key
  • rubygem-rexml is earlier than 0:3.2.5-160.el9_0
  • AND rubygem-rexml is signed with Red Hat redhatrelease2 key
  • rubygem-rss is earlier than 0:0.2.9-160.el9_0
  • AND rubygem-rss is signed with Red Hat redhatrelease2 key
  • rubygem-test-unit is earlier than 0:3.3.7-160.el9_0
  • AND rubygem-test-unit is signed with Red Hat redhatrelease2 key
  • rubygem-typeprof is earlier than 0:0.15.2-160.el9_0
  • AND rubygem-typeprof is signed with Red Hat redhatrelease2 key
  • rubygems is earlier than 0:3.2.33-160.el9_0
  • AND rubygems is signed with Red Hat redhatrelease2 key
  • rubygems-devel is earlier than 0:3.2.33-160.el9_0
  • AND rubygems-devel is signed with Red Hat redhatrelease2 key
    • BACK