[Apollo] Advisories Statistics light light Login

RLSA-2026:20596

Security Mirrored from RHSA-2026:20596
Issued at: 2026-05-28
Updated at: 2026-05-29

Synopsis

Important: ruby:4.0 security update



Description

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.

Security Fix(es):

* ruby/json: Ruby JSON: Denial of Service or Information Disclosure via format string injection (CVE-2026-33210)

* erb: ERB: Arbitrary code execution via deserialization bypass (CVE-2026-41316)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.



Affected products

Rocky Linux 9 aarch64 Rocky Linux 9 ppc64le Rocky Linux 9 s390x Rocky Linux 9 x86_64

Fixes

2449871 2461369

CVEs

CVE-2026-33210 CVE-2026-41316

Affected packages

Rocky Linux 9 aarch64 - AppStream

rubygem-mysql2-0:0.5.7-1.module+el9.8.0+40094+ce01217c.aarch64.rpm rubygem-mysql2-0:0.5.7-1.module+el9.8.0+40094+ce01217c.src.rpm rubygem-mysql2-debuginfo-0:0.5.7-1.module+el9.8.0+40094+ce01217c.aarch64.rpm rubygem-mysql2-debugsource-0:0.5.7-1.module+el9.8.0+40094+ce01217c.aarch64.rpm rubygem-mysql2-doc-0:0.5.7-1.module+el9.8.0+40094+ce01217c.noarch.rpm rubygem-pg-0:1.6.3-1.module+el9.8.0+40094+ce01217c.aarch64.rpm rubygem-pg-0:1.6.3-1.module+el9.8.0+40094+ce01217c.src.rpm rubygem-pg-debuginfo-0:1.6.3-1.module+el9.8.0+40094+ce01217c.aarch64.rpm rubygem-pg-debugsource-0:1.6.3-1.module+el9.8.0+40094+ce01217c.aarch64.rpm rubygem-pg-doc-0:1.6.3-1.module+el9.8.0+40094+ce01217c.noarch.rpm

Rocky Linux 9 ppc64le - AppStream

rubygem-mysql2-0:0.5.7-1.module+el9.8.0+40094+ce01217c.ppc64le.rpm rubygem-mysql2-0:0.5.7-1.module+el9.8.0+40094+ce01217c.src.rpm rubygem-mysql2-debuginfo-0:0.5.7-1.module+el9.8.0+40094+ce01217c.ppc64le.rpm rubygem-mysql2-debugsource-0:0.5.7-1.module+el9.8.0+40094+ce01217c.ppc64le.rpm rubygem-mysql2-doc-0:0.5.7-1.module+el9.8.0+40094+ce01217c.noarch.rpm rubygem-pg-0:1.6.3-1.module+el9.8.0+40094+ce01217c.ppc64le.rpm rubygem-pg-0:1.6.3-1.module+el9.8.0+40094+ce01217c.src.rpm rubygem-pg-debuginfo-0:1.6.3-1.module+el9.8.0+40094+ce01217c.ppc64le.rpm rubygem-pg-debugsource-0:1.6.3-1.module+el9.8.0+40094+ce01217c.ppc64le.rpm rubygem-pg-doc-0:1.6.3-1.module+el9.8.0+40094+ce01217c.noarch.rpm

Rocky Linux 9 s390x - AppStream

rubygem-mysql2-0:0.5.7-1.module+el9.8.0+40094+ce01217c.s390x.rpm rubygem-mysql2-0:0.5.7-1.module+el9.8.0+40094+ce01217c.src.rpm rubygem-mysql2-debuginfo-0:0.5.7-1.module+el9.8.0+40094+ce01217c.s390x.rpm rubygem-mysql2-debugsource-0:0.5.7-1.module+el9.8.0+40094+ce01217c.s390x.rpm rubygem-mysql2-doc-0:0.5.7-1.module+el9.8.0+40094+ce01217c.noarch.rpm rubygem-pg-0:1.6.3-1.module+el9.8.0+40094+ce01217c.s390x.rpm rubygem-pg-0:1.6.3-1.module+el9.8.0+40094+ce01217c.src.rpm rubygem-pg-debuginfo-0:1.6.3-1.module+el9.8.0+40094+ce01217c.s390x.rpm rubygem-pg-debugsource-0:1.6.3-1.module+el9.8.0+40094+ce01217c.s390x.rpm rubygem-pg-doc-0:1.6.3-1.module+el9.8.0+40094+ce01217c.noarch.rpm

Rocky Linux 9 x86_64 - AppStream

rubygem-mysql2-0:0.5.7-1.module+el9.8.0+40094+ce01217c.src.rpm rubygem-mysql2-0:0.5.7-1.module+el9.8.0+40094+ce01217c.x86_64.rpm rubygem-mysql2-debuginfo-0:0.5.7-1.module+el9.8.0+40094+ce01217c.x86_64.rpm rubygem-mysql2-debugsource-0:0.5.7-1.module+el9.8.0+40094+ce01217c.x86_64.rpm rubygem-mysql2-doc-0:0.5.7-1.module+el9.8.0+40094+ce01217c.noarch.rpm rubygem-pg-0:1.6.3-1.module+el9.8.0+40094+ce01217c.src.rpm rubygem-pg-0:1.6.3-1.module+el9.8.0+40094+ce01217c.x86_64.rpm rubygem-pg-debuginfo-0:1.6.3-1.module+el9.8.0+40094+ce01217c.x86_64.rpm rubygem-pg-debugsource-0:1.6.3-1.module+el9.8.0+40094+ce01217c.x86_64.rpm rubygem-pg-doc-0:1.6.3-1.module+el9.8.0+40094+ce01217c.noarch.rpm