ruby:2.5 security update

エラータID: AXSA:2022-3747:01

Release date: 
Monday, August 29, 2022 - 07:16
Subject: 
ruby:2.5 security update
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

Ruby is an extensible, interpreted, object-oriented, scripting language. It has
features to process text files and to perform system management tasks.

Security Fix(es):

* ruby: Regular expression denial of service vulnerability of Date parsing
methods (CVE-2021-41817)
* ruby: Cookie prefix spoofing in CGI::Cookie.parse (CVE-2021-41819)

For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE page(s)
listed in the References section.

CVE-2021-41817
Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular
expression Denial of Service) via a long string. The fixed versions are 3.2.1,
3.1.2, 3.0.2, and 2.0.1.
CVE-2021-41819
CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie
names. This also affects the CGI gem through 0.3.0 for Ruby.

Modularity name: ruby
Stream name: 2.5

Solution: 

Update packages.

CVEs: 
CVE-2021-41817
Date.parse in the date gem through 3.2.0 for Ruby allows ReDoS (regular expression Denial of Service) via a long string. The fixed versions are 3.2.1, 3.1.2, 3.0.2, and 2.0.1.
CVE-2021-41819
CGI::Cookie.parse in Ruby through 2.6.8 mishandles security prefixes in cookie names. This also affects the CGI gem through 0.3.0 for Ruby.
Additional Info: 

N/A

Download: 

SRPMS
  1. rubygem-abrt-0.3.0-4.module+el8+1499+12208b91.src.rpm
    MD5: e78a89b4459f0bb498fa19c220a4a284
    SHA-256: 7f9c9ccdd6869ddbbb1388a03b23b161def200bb23716a38ab4cf70db1c2907e
    Size: 16.06 kB
  2. rubygem-bson-4.3.0-2.module+el8+1499+12208b91.src.rpm
    MD5: abd022e2934a0d52c29a134fff11703b
    SHA-256: 934e646d80a3d7721b8172f1e95c396166aff1cdd6d50bee6ea9f4130718dbca
    Size: 90.07 kB
  3. rubygem-bundler-1.16.1-4.module+el8+1499+12208b91.src.rpm
    MD5: da439bd6a14dd7e52195bd6f3060a330
    SHA-256: ab6b3f12f61330f0696e28b970c8877dd98fec7b6638a45842fb4f2c1d663446
    Size: 14.64 MB
  4. rubygem-mongo-2.5.1-2.module+el8+1499+12208b91.src.rpm
    MD5: 08c4aee68e6b5f137551dec266f800ce
    SHA-256: 983c335e8a6c7ac82d5cdbca4adf6097453d5105e977393053795c282bba28b3
    Size: 338.58 kB
  5. rubygem-mysql2-0.4.10-4.module+el8+1499+12208b91.src.rpm
    MD5: da5e8695cdd146d3ef4b3bd7ffd4b481
    SHA-256: 3577eaf29f997a4688baad0f2c31ab53f586b50180dd086306f88902cf189c55
    Size: 108.16 kB
  6. rubygem-pg-1.0.0-2.0.1.module+el8+1499+12208b91.src.rpm
    MD5: 4846c49569413e94b150c238b3afe8d2
    SHA-256: c63936e8cb84aa96bf4e042152252bec7961545e6772363fd902c643760e50e5
    Size: 218.64 kB
  7. ruby-2.5.9-110.module+el8+1499+12208b91.src.rpm
    MD5: 23f10bfe6ac42df47ee1bf67de47f926
    SHA-256: bda902ba995f5214de15c6308516aeffd1dcb62741603f48422c2c97b1e47783
    Size: 10.92 MB

Asianux Server 8 for x86_64
  1. rubygem-abrt-0.3.0-4.module+el8+1499+12208b91.noarch.rpm
    MD5: 8ee1748eafa2d15038f27bbaf31e1431
    SHA-256: 67b2a881b32a8ea5fb4f5c2fd3ff57a62186f8fe1dff74d08900b9733dd0e033
    Size: 12.50 kB
  2. rubygem-abrt-doc-0.3.0-4.module+el8+1499+12208b91.noarch.rpm
    MD5: 4fd3e9949be84c983e582159d21ce194
    SHA-256: 434962312708f3ae9b58dc261c714d3e326b9ec1e60a4cf3a21ad97f4db9ebf7
    Size: 198.17 kB
  3. rubygem-bson-4.3.0-2.module+el8+1499+12208b91.x86_64.rpm
    MD5: 39fe69e8ac215f6a023606f7b0623759
    SHA-256: 12c4c9306630fc1574bf8810269bfdde4c64728df584a4a5921cff46dbd442a2
    Size: 53.38 kB
  4. rubygem-bson-debugsource-4.3.0-2.module+el8+1499+12208b91.x86_64.rpm
    MD5: 7fc51543e07e4230b20648a94e89b167
    SHA-256: ec2ae8bb1d47337bd4f7d6e207c18a695111b4352b8fcd83359b01fa6c126781
    Size: 19.73 kB
  5. rubygem-bson-doc-4.3.0-2.module+el8+1499+12208b91.noarch.rpm
    MD5: a697bd0c194db929767cf98306054bb8
    SHA-256: f6c0696135d1e7d0819917d85d334387312418a27b0f848f6f73f501848d1e98
    Size: 373.80 kB
  6. rubygem-bundler-1.16.1-4.module+el8+1499+12208b91.noarch.rpm
    MD5: eae72296065af955da601cde7cb6ea16
    SHA-256: ca8df2f084aa635e5d899b9bb56d6501bab7a8a1f0a2d903bb33654810f91594
    Size: 351.83 kB
  7. rubygem-bundler-doc-1.16.1-4.module+el8+1499+12208b91.noarch.rpm
    MD5: b427c43424b85231af3ce756ae05fa1a
    SHA-256: 27c3179bd9ce1e4fa7542e966d65b29ad7339498e2001a2a9bad08eced7287a7
    Size: 1.23 MB
  8. rubygem-mongo-2.5.1-2.module+el8+1499+12208b91.noarch.rpm
    MD5: eb384b96446ca9e3f22d51679d697431
    SHA-256: a356eae2a4b2d52a2e5c7690ede7c3f0e52b37752163b931d60f066359ddd150
    Size: 184.40 kB
  9. rubygem-mongo-doc-2.5.1-2.module+el8+1499+12208b91.noarch.rpm
    MD5: 1ac292389e8186d4fee6002c40d1f34c
    SHA-256: 87e4c905a54461f88ae9c284389687b370e8aef1a4b38d29b6e6a6e84196c228
    Size: 1.20 MB
  10. rubygem-mysql2-0.4.10-4.module+el8+1499+12208b91.x86_64.rpm
    MD5: ebee1d0075a2a295f0938ce6fc362dee
    SHA-256: dd123f1ad535e3295651b9a872ae71cf5f8bc9ae2eeaff66f3215bc03c6cd1bb
    Size: 44.14 kB
  11. rubygem-mysql2-debugsource-0.4.10-4.module+el8+1499+12208b91.x86_64.rpm
    MD5: 29df4ce83bad13753631657ee6b14ba6
    SHA-256: 81512324712d05b961c29ecb234017ac6a1b36e20a7400317f2dbbb86cbeb1c6
    Size: 35.86 kB
  12. rubygem-mysql2-doc-0.4.10-4.module+el8+1499+12208b91.noarch.rpm
    MD5: 64ef791a5924c2ac405f2027f3c360f1
    SHA-256: 552ad6b778c0ddc6cbcd6ea392ce141ab1d9628a373d6f383e25deff23a1fb45
    Size: 275.23 kB
  13. rubygem-pg-1.0.0-2.0.1.module+el8+1499+12208b91.x86_64.rpm
    MD5: 04048996a50b6584db6ca503c888ae25
    SHA-256: 720ac93a74629d21e10c8d76498f0ec5846c1df4be0b1308cf91205fa284eb18
    Size: 86.22 kB
  14. rubygem-pg-debugsource-1.0.0-2.0.1.module+el8+1499+12208b91.x86_64.rpm
    MD5: 9e8ae4a35e6b57ecea567334c93254e1
    SHA-256: a255fcf68a9308d312466fd794099de7100acfed6ebb9539fed124813bae092d
    Size: 81.28 kB
  15. rubygem-pg-doc-1.0.0-2.0.1.module+el8+1499+12208b91.noarch.rpm
    MD5: a6f72e17c3cc3ffcc0222547e4b54ac7
    SHA-256: bc3a60a89b72e425e49d80bc2057c2fcaff6ba612f8050311cbb2209b9d15a65
    Size: 522.84 kB
  16. ruby-2.5.9-110.module+el8+1499+12208b91.x86_64.rpm
    MD5: 14333afa1f91fd78087f04ea0edf1c7e
    SHA-256: f5f365fc70113d2ba99a956adc5c6f0e03cda4965ef8d5711ce41bd6cf71b441
    Size: 86.24 kB
  17. ruby-debugsource-2.5.9-110.module+el8+1499+12208b91.x86_64.rpm
    MD5: ee73d914a040302730f7ba0ff0c9a0ae
    SHA-256: 6d454fab141bd26c5d61d3e9fb98ad61cb65950142601362961436ba9777b3d1
    Size: 3.68 MB
  18. ruby-devel-2.5.9-110.module+el8+1499+12208b91.x86_64.rpm
    MD5: 85e55ff6960384dbc2057a4a8261eebc
    SHA-256: 21d9c879444542bbbd768464e5c4057881c306e9986858d0185d64834dd3b601
    Size: 125.65 kB
  19. ruby-doc-2.5.9-110.module+el8+1499+12208b91.noarch.rpm
    MD5: d81dfa65d015eb624bff5314d5efdc93
    SHA-256: 33b99599d99375922ad96dd091951115d51e8ccaf9bb721f1ab54c2dca2d35de
    Size: 5.33 MB
  20. rubygem-bigdecimal-1.3.4-110.module+el8+1499+12208b91.x86_64.rpm
    MD5: bfa3eef034bd2f4a0eec133653d2d5ba
    SHA-256: 52db2f6ab465a6a574028156efc876fe1e0d8949a46e40d10755d8f6d4e85ce4
    Size: 96.90 kB
  21. rubygem-did_you_mean-1.2.0-110.module+el8+1499+12208b91.noarch.rpm
    MD5: cc1d8a58a31665f5e732f2ef6145d22d
    SHA-256: f7d4b609ca7795cb655c116f0f90c836e41336cc65298365ba977c3ced16ef7f
    Size: 80.87 kB
  22. rubygem-io-console-0.4.6-110.module+el8+1499+12208b91.x86_64.rpm
    MD5: 25000137fc832b751277b6aabeefca43
    SHA-256: 829baf9a06248037dcb10958944cf593bf179112b832c7413eb943dff648a774
    Size: 66.26 kB
  23. rubygem-json-2.1.0-110.module+el8+1499+12208b91.x86_64.rpm
    MD5: b778501f0e62da4f303f53ab168fd293
    SHA-256: c6533df1a9e966fb64e469ffa32e3068bee60d192a16e1dfcb193ae0766c74f5
    Size: 90.16 kB
  24. rubygem-minitest-5.10.3-110.module+el8+1499+12208b91.noarch.rpm
    MD5: 5e1c7e706411b770497699866a975ba9
    SHA-256: 4bd9fe68adb35384a2f8776402118b7c12d5439153049457e759a7d8b689e424
    Size: 122.17 kB
  25. rubygem-net-telnet-0.1.1-110.module+el8+1499+12208b91.noarch.rpm
    MD5: 37af141d3cfc2b9988d538fc130e02cc
    SHA-256: e6e16543dc2fb579400b332751481d663a7487433c1fae91abd02ff2875300b1
    Size: 69.88 kB
  26. rubygem-openssl-2.1.2-110.module+el8+1499+12208b91.x86_64.rpm
    MD5: 531e4b67f580a3d6ca4d360d866d5990
    SHA-256: c86d898e8e454befd442acca7c2a8397b01ad393e43301cb0cde5f5b33594173
    Size: 188.98 kB
  27. rubygem-power_assert-1.1.1-110.module+el8+1499+12208b91.noarch.rpm
    MD5: 48ec7dc3f615cbe682ba4ec9240cb20a
    SHA-256: 81e11bb20bb57048b271d91fed67990cbd0b97261e693d1a7ce0948d56283c68
    Size: 68.96 kB
  28. rubygem-psych-3.0.2-110.module+el8+1499+12208b91.x86_64.rpm
    MD5: ce8dd0a39fc3ddba887ea860de682862
    SHA-256: 02b3d12f45b171032092fde9e427e1e78b5333768dbb605fa8aec974e3982d2c
    Size: 94.74 kB
  29. rubygem-rake-12.3.3-110.module+el8+1499+12208b91.noarch.rpm
    MD5: 4126a1c202bf53dbc8fe5de428c9e4b2
    SHA-256: 58155fb976b1768f9b1875cefb9cada8055dfeed223a9676267f674d9f4390fc
    Size: 140.98 kB
  30. rubygem-rdoc-6.0.1.1-110.module+el8+1499+12208b91.noarch.rpm
    MD5: b78078ed56ba488ef9f66750e4821628
    SHA-256: b18fa2192228e5226c80860b7dc15750e6fabcd31da6393135a37536f4a33b5d
    Size: 455.34 kB
  31. rubygems-2.7.6.3-110.module+el8+1499+12208b91.noarch.rpm
    MD5: 49b55f699998b859f0904f4849a9d87c
    SHA-256: 804474f53b4ca6a0980daba7fafd4c02ba9b51810acea83f53f33faa7a9df93c
    Size: 307.69 kB
  32. rubygems-devel-2.7.6.3-110.module+el8+1499+12208b91.noarch.rpm
    MD5: d685423a2e16fd15f7deffbb7ccafb3e
    SHA-256: 6f2199b3d044e2bc8cdf53c3fa07a5645d99d74a428e0c872b95991273964ba0
    Size: 59.78 kB
  33. rubygem-test-unit-3.2.7-110.module+el8+1499+12208b91.noarch.rpm
    MD5: 073d4390e1cc86bc4babafe205812c39
    SHA-256: 09896c5adced660abaf053512589f987b5dc516f50a3892f08cf3f54ba334ec4
    Size: 181.77 kB
  34. rubygem-xmlrpc-0.3.0-110.module+el8+1499+12208b91.noarch.rpm
    MD5: c0e25dcc3f6b3d18160c6f1b8cc534f5
    SHA-256: 164e4e0adc99b29cc88fd3e5725e2a8d23bb6bbb52f43a969c3b708d8f851826
    Size: 81.46 kB
  35. ruby-irb-2.5.9-110.module+el8+1499+12208b91.noarch.rpm
    MD5: d819d565ff8626ac3ce1634d6e0ecea9
    SHA-256: 5801195606445255b1e56fcaf87f5ec346f2675d476067f7ab58d970691cf4f8
    Size: 101.73 kB
  36. ruby-libs-2.5.9-110.module+el8+1499+12208b91.x86_64.rpm
    MD5: 9c8cf7b76ff91850f339c5a61d2388b7
    SHA-256: 15d9c40090e2192361cc2635d233891cdceb1af3a34b80e1e2071544427716a4
    Size: 2.92 MB
  37. ruby-2.5.9-110.module+el8+1499+12208b91.i686.rpm
    MD5: 07e2ab94cfe8681ae2139cd276d1ce63
    SHA-256: ab081ea287348b3356992b4448e52f1846108b84309e41604136048b4480ca16
    Size: 86.36 kB
  38. ruby-debugsource-2.5.9-110.module+el8+1499+12208b91.i686.rpm
    MD5: 7433eb8bbba0efd2f95e45df530406d5
    SHA-256: 1e17270d5216f1804074ae015b31f581ddc84fb3065daafd5cb2b6070ba9e4ab
    Size: 3.68 MB
  39. ruby-devel-2.5.9-110.module+el8+1499+12208b91.i686.rpm
    MD5: 6bf9cb3ce3ed14cf7eb589978466991f
    SHA-256: b41f0fcbc29ea6a91d3df5b9d071efede01acda88b6d14fe36790163d1bc7246
    Size: 125.68 kB
  40. rubygem-bigdecimal-1.3.4-110.module+el8+1499+12208b91.i686.rpm
    MD5: c2dfef857fb20b663b14d6f180d7cb03
    SHA-256: f14b326770e558fa8112a845b78e1f77920d40010fb69e4acf520bc6578a3553
    Size: 99.71 kB
  41. rubygem-io-console-0.4.6-110.module+el8+1499+12208b91.i686.rpm
    MD5: 80a2fa9f79e29f4470321437e5b03086
    SHA-256: 58153b94e0568e7a695cc6fdb12ea3f0f525f847d6dec920c375e8014e80f13c
    Size: 67.29 kB
  42. rubygem-json-2.1.0-110.module+el8+1499+12208b91.i686.rpm
    MD5: 987bb191cdc2a0984208c43b54c4de36
    SHA-256: 50160ac798bb8b9107e500bf5f57e491f8a443c84c6bf2f4566099cbe82593d9
    Size: 91.53 kB
  43. rubygem-openssl-2.1.2-110.module+el8+1499+12208b91.i686.rpm
    MD5: 8dc3451094af88c3e884f00bfc24cc75
    SHA-256: ae6766b531d6e17b018b085fa90531215fd121964c6077625fb57d5d221c53c6
    Size: 201.23 kB
  44. rubygem-psych-3.0.2-110.module+el8+1499+12208b91.i686.rpm
    MD5: 7099ac53309c418cb159a75bc115571d
    SHA-256: 2694c9cd6a435928cb1259338bfef78b63ae776cd6446b34ae3edb9be3c5c55d
    Size: 96.08 kB
  45. ruby-libs-2.5.9-110.module+el8+1499+12208b91.i686.rpm
    MD5: 7a9804367518104ca71b8753fab3ea76
    SHA-256: 63c4d7de306a97574b67eb316e242de414cdf9e50167e5d2b3172c0b58cbd1dd
    Size: 3.03 MB