[Apollo] Advisories Statistics light light Login

RLSA-2024:6784

Security Mirrored from RHSA-2024:6784
Issued at: 2024-09-30
Updated at: 2024-09-30

Synopsis

Moderate: ruby:3.3 security update



Description

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.

Security Fix(es):

* rexml: DoS vulnerability in REXML (CVE-2024-39908)

* rexml: rubygem-rexml: DoS when parsing an XML having many specific characters such as whitespace character, >] and ]> (CVE-2024-41123)

* rexml: DoS vulnerability in REXML (CVE-2024-41946)

* rexml: DoS vulnerability in REXML (CVE-2024-43398)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 8 aarch64 Rocky Linux 8 x86_64

Fixes

2298243 2302268 2302272 2307297

CVEs

CVE-2024-39908 CVE-2024-41123 CVE-2024-41946 CVE-2024-43398

Affected packages

Rocky Linux 8 aarch64 - AppStream

ruby-0:3.3.5-3.module+el8.10.0+1867+7989c958.aarch64.rpm ruby-0:3.3.5-3.module+el8.10.0+1867+7989c958.src.rpm ruby-bundled-gems-0:3.3.5-3.module+el8.10.0+1867+7989c958.aarch64.rpm ruby-bundled-gems-debuginfo-0:3.3.5-3.module+el8.10.0+1867+7989c958.aarch64.rpm ruby-debuginfo-0:3.3.5-3.module+el8.10.0+1867+7989c958.aarch64.rpm ruby-debugsource-0:3.3.5-3.module+el8.10.0+1867+7989c958.aarch64.rpm ruby-default-gems-0:3.3.5-3.module+el8.10.0+1867+7989c958.noarch.rpm ruby-devel-0:3.3.5-3.module+el8.10.0+1867+7989c958.aarch64.rpm ruby-doc-0:3.3.5-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-abrt-0:0.4.0-1.module+el8.10.0+1679+61871737.noarch.rpm rubygem-abrt-0:0.4.0-1.module+el8.10.0+1679+61871737.src.rpm rubygem-abrt-doc-0:0.4.0-1.module+el8.10.0+1679+61871737.noarch.rpm rubygem-bigdecimal-0:3.1.5-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-bigdecimal-debuginfo-0:3.1.5-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-bundler-0:2.5.16-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-io-console-0:0.7.1-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-io-console-debuginfo-0:0.7.1-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-irb-0:1.13.1-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-json-0:2.7.1-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-json-debuginfo-0:2.7.1-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-minitest-0:5.20.0-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-mysql2-0:0.5.5-1.module+el8.10.0+1679+61871737.aarch64.rpm rubygem-mysql2-0:0.5.5-1.module+el8.10.0+1679+61871737.src.rpm rubygem-mysql2-debuginfo-0:0.5.5-1.module+el8.10.0+1679+61871737.aarch64.rpm rubygem-mysql2-debugsource-0:0.5.5-1.module+el8.10.0+1679+61871737.aarch64.rpm rubygem-mysql2-doc-0:0.5.5-1.module+el8.10.0+1679+61871737.noarch.rpm rubygem-pg-0:1.5.4-1.module+el8.10.0+1679+61871737.aarch64.rpm rubygem-pg-0:1.5.4-1.module+el8.10.0+1679+61871737.src.rpm rubygem-pg-debuginfo-0:1.5.4-1.module+el8.10.0+1679+61871737.aarch64.rpm rubygem-pg-debugsource-0:1.5.4-1.module+el8.10.0+1679+61871737.aarch64.rpm rubygem-pg-doc-0:1.5.4-1.module+el8.10.0+1679+61871737.noarch.rpm rubygem-power_assert-0:2.0.3-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-psych-0:5.1.2-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-psych-debuginfo-0:5.1.2-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-racc-0:1.7.3-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-racc-debuginfo-0:1.7.3-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-rake-0:13.1.0-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-rbs-0:3.4.0-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-rbs-debuginfo-0:3.4.0-3.module+el8.10.0+1867+7989c958.aarch64.rpm rubygem-rdoc-0:6.6.3.1-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-rexml-0:3.3.6-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-rss-0:0.3.1-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygems-0:3.5.16-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygems-devel-0:3.5.16-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-test-unit-0:3.6.1-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-typeprof-0:0.21.9-3.module+el8.10.0+1867+7989c958.noarch.rpm ruby-libs-0:3.3.5-3.module+el8.10.0+1867+7989c958.aarch64.rpm ruby-libs-debuginfo-0:3.3.5-3.module+el8.10.0+1867+7989c958.aarch64.rpm

Rocky Linux 8 x86_64 - AppStream

ruby-0:3.3.5-3.module+el8.10.0+1867+7989c958.i686.rpm ruby-0:3.3.5-3.module+el8.10.0+1867+7989c958.src.rpm ruby-0:3.3.5-3.module+el8.10.0+1867+7989c958.x86_64.rpm ruby-bundled-gems-0:3.3.5-3.module+el8.10.0+1867+7989c958.i686.rpm ruby-bundled-gems-0:3.3.5-3.module+el8.10.0+1867+7989c958.x86_64.rpm ruby-bundled-gems-debuginfo-0:3.3.5-3.module+el8.10.0+1867+7989c958.i686.rpm ruby-bundled-gems-debuginfo-0:3.3.5-3.module+el8.10.0+1867+7989c958.x86_64.rpm ruby-debuginfo-0:3.3.5-3.module+el8.10.0+1867+7989c958.i686.rpm ruby-debuginfo-0:3.3.5-3.module+el8.10.0+1867+7989c958.x86_64.rpm ruby-debugsource-0:3.3.5-3.module+el8.10.0+1867+7989c958.i686.rpm ruby-debugsource-0:3.3.5-3.module+el8.10.0+1867+7989c958.x86_64.rpm ruby-default-gems-0:3.3.5-3.module+el8.10.0+1867+7989c958.noarch.rpm ruby-devel-0:3.3.5-3.module+el8.10.0+1867+7989c958.i686.rpm ruby-devel-0:3.3.5-3.module+el8.10.0+1867+7989c958.x86_64.rpm ruby-doc-0:3.3.5-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-abrt-0:0.4.0-1.module+el8.10.0+1679+61871737.noarch.rpm rubygem-abrt-0:0.4.0-1.module+el8.10.0+1679+61871737.src.rpm rubygem-abrt-doc-0:0.4.0-1.module+el8.10.0+1679+61871737.noarch.rpm rubygem-bigdecimal-0:3.1.5-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-bigdecimal-0:3.1.5-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-bigdecimal-debuginfo-0:3.1.5-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-bigdecimal-debuginfo-0:3.1.5-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-bundler-0:2.5.16-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-io-console-0:0.7.1-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-io-console-0:0.7.1-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-io-console-debuginfo-0:0.7.1-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-io-console-debuginfo-0:0.7.1-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-irb-0:1.13.1-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-json-0:2.7.1-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-json-0:2.7.1-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-json-debuginfo-0:2.7.1-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-json-debuginfo-0:2.7.1-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-minitest-0:5.20.0-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-mysql2-0:0.5.5-1.module+el8.10.0+1679+61871737.src.rpm rubygem-mysql2-0:0.5.5-1.module+el8.10.0+1679+61871737.x86_64.rpm rubygem-mysql2-debuginfo-0:0.5.5-1.module+el8.10.0+1679+61871737.x86_64.rpm rubygem-mysql2-debugsource-0:0.5.5-1.module+el8.10.0+1679+61871737.x86_64.rpm rubygem-mysql2-doc-0:0.5.5-1.module+el8.10.0+1679+61871737.noarch.rpm rubygem-pg-0:1.5.4-1.module+el8.10.0+1679+61871737.src.rpm rubygem-pg-0:1.5.4-1.module+el8.10.0+1679+61871737.x86_64.rpm rubygem-pg-debuginfo-0:1.5.4-1.module+el8.10.0+1679+61871737.x86_64.rpm rubygem-pg-debugsource-0:1.5.4-1.module+el8.10.0+1679+61871737.x86_64.rpm rubygem-pg-doc-0:1.5.4-1.module+el8.10.0+1679+61871737.noarch.rpm rubygem-power_assert-0:2.0.3-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-psych-0:5.1.2-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-psych-0:5.1.2-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-psych-debuginfo-0:5.1.2-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-psych-debuginfo-0:5.1.2-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-racc-0:1.7.3-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-racc-0:1.7.3-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-racc-debuginfo-0:1.7.3-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-racc-debuginfo-0:1.7.3-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-rake-0:13.1.0-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-rbs-0:3.4.0-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-rbs-0:3.4.0-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-rbs-debuginfo-0:3.4.0-3.module+el8.10.0+1867+7989c958.i686.rpm rubygem-rbs-debuginfo-0:3.4.0-3.module+el8.10.0+1867+7989c958.x86_64.rpm rubygem-rdoc-0:6.6.3.1-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-rexml-0:3.3.6-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-rss-0:0.3.1-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygems-0:3.5.16-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygems-devel-0:3.5.16-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-test-unit-0:3.6.1-3.module+el8.10.0+1867+7989c958.noarch.rpm rubygem-typeprof-0:0.21.9-3.module+el8.10.0+1867+7989c958.noarch.rpm ruby-libs-0:3.3.5-3.module+el8.10.0+1867+7989c958.i686.rpm ruby-libs-0:3.3.5-3.module+el8.10.0+1867+7989c958.x86_64.rpm ruby-libs-debuginfo-0:3.3.5-3.module+el8.10.0+1867+7989c958.i686.rpm ruby-libs-debuginfo-0:3.3.5-3.module+el8.10.0+1867+7989c958.x86_64.rpm