ruby:3.3 security update

エラータID: AXSA:2025-11546:01

Release date: 
Wednesday, December 17, 2025 - 22:06
Subject: 
ruby:3.3 security update
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.

Security Fix(es):

* resolv: Denial of Service in resolv gem (CVE-2025-24294)
* rexml: REXML denial of service (CVE-2025-58767)
* When using the + operator to combine URIs, sensitive information like passwords from the original URI can be leaked,
violating RFC3986 and making applications vulnerable to credential exposure. (CVE-2025-61594)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2025-24294
The attack vector is a potential Denial of Service (DoS). The vulnerability is caused by an insufficient check on the length of a decompressed domain name within a DNS packet. An attacker can craft a malicious DNS packet containing a highly compressed domain name. When the resolv library parses such a packet, the name decompression process consumes a large amount of CPU resources, as the library does not limit the resulting length of the name. This resource consumption can cause the application thread to become unresponsive, resulting in a Denial of Service condition.
CVE-2025-58767
REXML is an XML toolkit for Ruby. The REXML gems from 3.3.3 to 3.4.1 has a DoS vulnerability when parsing XML containing multiple XML declarations. If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities. The REXML gem 3.4.2 or later include the patches to fix these vulnerabilities.
CVE-2025-61594
When using the + operator to combine URIs, sensitive information like passwords from the original URI can be leaked,
violating RFC3986 and making applications vulnerable to credential exposure.

Modularity name: "ruby"
Stream name: "3.3"

Solution: 

Update packages.

CVEs: 
CVE-2025-24294
The attack vector is a potential Denial of Service (DoS). The vulnerability is caused by an insufficient check on the length of a decompressed domain name within a DNS packet. An attacker can craft a malicious DNS packet containing a highly compressed domain name. When the resolv library parses such a packet, the name decompression process consumes a large amount of CPU resources, as the library does not limit the resulting length of the name. This resource consumption can cause the application thread to become unresponsive, resulting in a Denial of Service condition.
CVE-2025-58767
REXML is an XML toolkit for Ruby. The REXML gems from 3.3.3 to 3.4.1 has a DoS vulnerability when parsing XML containing multiple XML declarations. If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities. The REXML gem 3.4.2 or later include the patches to fix these vulnerabilities.
CVE-2025-61594

Additional Info: 

N/A

Download: 

SRPMS
  1. rpm-local-generator-support-1-1.module+el8+1927+aa239d8c.src.rpm
    MD5: ef18929c53a034ebe4caa65e629e5bb1
    SHA-256: 460d9037a403d195c4757b95840a300523c06e1243399123f9eca14cf77aa9c1
    Size: 7.12 kB
  2. rubygem-abrt-0.4.0-1.module+el8+1927+aa239d8c.src.rpm
    MD5: ff154a84fde1d918c110052012117616
    SHA-256: db1f378e8c9549bcfafa328cee56a080609fde1fa446721dcc7a91b6c043d1a9
    Size: 16.60 kB
  3. rubygem-mysql2-0.5.5-1.module+el8+1927+aa239d8c.src.rpm
    MD5: 3f367e13f200cf41417953258e57051f
    SHA-256: 9489f112ea63e8f8d16984f2b3ebc7e37b2db745369ba5b147231e057e00deff
    Size: 124.06 kB
  4. rubygem-pg-1.5.4-1.module+el8+1927+aa239d8c.ML.1.src.rpm
    MD5: 4a1230a71524e5d133e247db88feea78
    SHA-256: a8b9cb8c43e477dc0baef8bad4284097fbbcdd6ead1bd5efe8b60d1b13734ca9
    Size: 310.08 kB
  5. ruby-3.3.10-5.module+el8+1927+aa239d8c.src.rpm
    MD5: a1585239b58f5f24fb92beb14a3b0b2e
    SHA-256: 8489f241fe379aa4f25eca6210dadd60e4b22b130b64d020bdae63f5c89a2ed4
    Size: 15.81 MB

Asianux Server 8 for x86_64
  1. ruby-3.3.10-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: d7ca36d44433512f899a84448cbdc5ca
    SHA-256: 58f777d9c3b134165cd179980d59dbb60b458f4511172c639448457c96c2d987
    Size: 88.63 kB
  2. ruby-3.3.10-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: 5c6af668c4b6d16c0f25ee9fd7abe868
    SHA-256: 70c7e2b70aa2e0db94c45aaaabdd6cfc2bf2eef4d7ddbecb28ec1a0489159e8c
    Size: 88.55 kB
  3. ruby-bundled-gems-3.3.10-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: c75190abfaa2a28fd13046931249b3dc
    SHA-256: bb1500ca4e0f1af494f44e006e123ea6b772097ec38119c656f612d4504207e3
    Size: 338.67 kB
  4. ruby-bundled-gems-3.3.10-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: 084a0e576b77e0f2666a2844da123c82
    SHA-256: 770fb1bbe32f11f459579a844ccfac72b554a60cddbe003fe2f9cf21a56b8151
    Size: 338.37 kB
  5. ruby-debugsource-3.3.10-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: 445dd37c6a8c11939344d1bc65235f7d
    SHA-256: 71909da8a8065e6efa9c763ae1e521971f160ad251e86ae95fc40f7c4ab78ccf
    Size: 4.43 MB
  6. ruby-debugsource-3.3.10-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: 962bc8bad6207aded830b36b69b4fd6c
    SHA-256: 0658b0fb5ebd686008be2cdcacba2b85badae4f2b1e2689c86ebedc054514426
    Size: 4.69 MB
  7. ruby-default-gems-3.3.10-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: d18a3c87f989d94df9f29e2ef5b42c25
    SHA-256: 3ff0876e711bd96b693129036c879cd0b1f1a814143953bc8f5ed4b9edddd8cc
    Size: 84.95 kB
  8. ruby-devel-3.3.10-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: 8f27a4a93b2b87bb5f87da421369ec44
    SHA-256: f1084b9e95856b92c044edbe0e24e02894f60b2eeeec1760de43cb806ce35ca5
    Size: 366.30 kB
  9. ruby-devel-3.3.10-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: 7e7d570fbe5d7b7fc3461927103a1ff7
    SHA-256: 9022c4578f8d327e4174095e08b5dc32d6292e630cdb8d1af6ead1c30ebaccdf
    Size: 366.30 kB
  10. ruby-doc-3.3.10-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 44abed4fcb2d57188622c6f5a55637a1
    SHA-256: 60a7d536ff6bbb4c955133c05e35eac04166c12fc9153fd17adf11e98ee50752
    Size: 4.85 MB
  11. rubygem-abrt-0.4.0-1.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 253ac5dcc7db1256589bde89bc5313cf
    SHA-256: 9673102076fb9421193ff9a5dabf940fda26835e278cb15bb019f676c35a3716
    Size: 12.50 kB
  12. rubygem-abrt-doc-0.4.0-1.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 1d8b58f0ed9d1e456684718ed3072fff
    SHA-256: a44ecd2356fa2e88057bbbffdff64dc5630803c91576a85294570ffa253d96f6
    Size: 256.72 kB
  13. rubygem-bigdecimal-3.1.5-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: d4f825a52c44bb08a5d94e4a0171604b
    SHA-256: 4147968f90b8434aea23f8c89149b60235cd9dd540ddc9ef0c650858e7cecf40
    Size: 118.51 kB
  14. rubygem-bigdecimal-3.1.5-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: 5b85b250aad8f2e62d7a02264ed989b2
    SHA-256: 7e3ffdbc2adfa3993f04cf1ae1d89f6eec734b84167a90d2f7d683e427d3c71d
    Size: 114.73 kB
  15. rubygem-bundler-2.5.22-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 5d2e52d3b4d8a63ad1844201a0bf2888
    SHA-256: 1230f2dc81a5bf18ed7487d602ad48d71f08d68f5d755a6849a393ad710633d1
    Size: 480.98 kB
  16. rubygem-io-console-0.7.1-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: 3d8f61920f6d8b259f3f91d9ff61e9c2
    SHA-256: 44fa52cb2cb8744e895f6e8a2910ca9ec69cdd660780ec2459e73781d474b3bf
    Size: 74.59 kB
  17. rubygem-io-console-0.7.1-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: 177a3e34668fc532064951923149bf59
    SHA-256: a61391034d99810c55e86609354ecd5c698a6d4d05090ab7625f4d8b135d52a7
    Size: 72.83 kB
  18. rubygem-irb-1.13.1-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: d91ff6419ba1047b6e060251e56ec798
    SHA-256: 632dd2f708828ad3a5dbc327d276aacc61bc6a7a94969eae4b44e0cf14a451a3
    Size: 150.83 kB
  19. rubygem-json-2.7.2-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: 7039fa4c01cd81afc0e34155aee49b08
    SHA-256: ee2abaf6f1a4ff8650468d2e0c91fe739aa0262b65df438ea0598238040bc20d
    Size: 102.73 kB
  20. rubygem-json-2.7.2-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: 01caba157f713718d44aa38c59091845
    SHA-256: d69c9a4d4a2b28a6d58de075981eb93f996e0efcbcb835b8474c26deb2a5afff
    Size: 101.17 kB
  21. rubygem-minitest-5.20.0-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 83a2f7a4239107da3b13b4356ee84953
    SHA-256: ce510aad04ed0740fad0584ff86f11a57071a65fdddb4a8d8bd19885ff3591ac
    Size: 142.67 kB
  22. rubygem-mysql2-0.5.5-1.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: f36f37ba38990308a00db67461977af6
    SHA-256: 1d70c7580316c311c633ad45dead5aca21d210aa01b81b5c25f559614e50d5b9
    Size: 46.56 kB
  23. rubygem-mysql2-debugsource-0.5.5-1.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: 83ace5c3e4c3460cfb416f6c4e46ea3a
    SHA-256: 12aa4754b2b9d8e5996e6fa11b33dafd9753d3c1480943e3e933f1561d1b1dc1
    Size: 39.60 kB
  24. rubygem-mysql2-doc-0.5.5-1.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 44bddf0d493962e190efd5dc1fed6e42
    SHA-256: 7f9a912d707a5af72d33b99f88ddaa824122e04a76951696081c8e9053919da4
    Size: 309.10 kB
  25. rubygem-pg-1.5.4-1.module+el8+1927+aa239d8c.ML.1.x86_64.rpm
    MD5: 6bd2e5f752185107fea9ec72d95f11da
    SHA-256: 5b5a45ae8ff82db4399b98e24fe3787d4c146623ded1de03f093cfc3f2ac87ce
    Size: 116.17 kB
  26. rubygem-pg-debugsource-1.5.4-1.module+el8+1927+aa239d8c.ML.1.x86_64.rpm
    MD5: d58d86bb0753532fc2d30ddd5c0f6cee
    SHA-256: 655fc49c6fd1a4bfe57ae1264c5d4519078f918e74ebef5312f80e2a65bc0fbf
    Size: 105.02 kB
  27. rubygem-pg-doc-1.5.4-1.module+el8+1927+aa239d8c.ML.1.noarch.rpm
    MD5: e4dcb1450766b4f1cc407d8388c31989
    SHA-256: 4d85ca048c0598324acd2597bdd402195f94bbf0ff4ed1fe6db1ad53b5032fe8
    Size: 630.27 kB
  28. rubygem-power_assert-2.0.3-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 6b8a3b01df92e15dc34825338afdace8
    SHA-256: 554c68640ff65f8df6a2362bd60e7a10ab75b7a3edb7a443d1ae0f89086c5ea5
    Size: 71.55 kB
  29. rubygem-psych-5.1.2-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: 35836231c7a5220be93307420d0f2d53
    SHA-256: 43b2ddb09ca7eceb30a479ae6dbb11dd2bfc3e24844c6a07c01bec8ead088c5e
    Size: 101.18 kB
  30. rubygem-psych-5.1.2-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: 3584cabfd0ee2c423ebc8805fd3de343
    SHA-256: 22e47027db005369e33d57471df992a5abf855516bdb104ed3dd5b9ab1147cad
    Size: 99.87 kB
  31. rubygem-racc-1.7.3-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: 331bff5cfdcd38822485e6ab11e1c907
    SHA-256: b24b5b4e1e82423e8b54b7639052c5e98a13f9b40a076ea6b0120940d598ca8d
    Size: 124.22 kB
  32. rubygem-racc-1.7.3-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: c46ae98858a398216ce4311d3f943330
    SHA-256: a50a8efad9ce60e9c0a7a0c0c574dae96f5d4d1b1c9b44f296f0a104806566a4
    Size: 123.77 kB
  33. rubygem-rake-13.1.0-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: acb7e14ba50789a30620f93b95397592
    SHA-256: f1d2896e320415cff8dcea24e4bf57ff0298bb50831f1b3d94f2f32aee2ede03
    Size: 140.68 kB
  34. rubygem-rbs-3.4.0-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: 4917df002b3eaae054580018cf6414c3
    SHA-256: 7fcc2961d2f87b0ec0306477dd359d12f94e568f497a750ae2b1d2ebc2a62982
    Size: 1.03 MB
  35. rubygem-rbs-3.4.0-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: c183627b14bd558f67dcdb4cf4c804be
    SHA-256: 576ead8ea37ecb90deaebfc752744fed0f61f3689acf078101646131fe034a00
    Size: 1.02 MB
  36. rubygem-rdoc-6.6.3.1-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 4dd5fa41fd27a8ea70ce1eea515c3517
    SHA-256: f58b48f453981f0b59e5002b9e7547aec3438547e932baf06dd8f0d1f1a10c7d
    Size: 520.49 kB
  37. rubygem-rexml-3.4.4-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 2fddada9a5003cc3b117473ff6587b59
    SHA-256: dd25fdc4c31a7b896be7401505ef9037236d4d2bba2dd1ca7f728a22e46833ce
    Size: 160.76 kB
  38. rubygem-rss-0.3.1-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 6405c7d3ca66164432dc640220d350ca
    SHA-256: 46a7165c2938f3285ee90171966b07d1a759b369c2aeea44098b603b95c11023
    Size: 111.09 kB
  39. rubygems-3.5.22-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 4199ce27d7f5027356a08761b6cda9c7
    SHA-256: ffd53ddb76c6f817344794d8d4c497d8c645a814e9974adf3b67e0bd13d8bbec
    Size: 440.44 kB
  40. rubygems-devel-3.5.22-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 426abd836787d2c74db409fc49075b32
    SHA-256: 5824b5a36b39223cef1e2f6c354f4845c28b68643d6f7930ee5ab760a7c8ff47
    Size: 63.30 kB
  41. rubygem-test-unit-3.6.1-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 5b70e4fb435c55df6b13883e0b344277
    SHA-256: b422bcbeed3335c2e00c8208766cac7a7bd517434401d2913b4adb3c2d81484a
    Size: 150.18 kB
  42. rubygem-typeprof-0.21.9-5.module+el8+1927+aa239d8c.noarch.rpm
    MD5: 61a560532e2539823458484c02676957
    SHA-256: 5264655a69a4b91d6531de2abd2d8ac18b9939a01da8b1eef56f1e44c0d4f769
    Size: 127.90 kB
  43. ruby-libs-3.3.10-5.module+el8+1927+aa239d8c.i686.rpm
    MD5: bd1600ee9ed4d8d04d5042d63976ab0a
    SHA-256: c0edb7f8b9b482e777bce26b90be0b1557987ad28bab8ca83046ea01d2fe86a3
    Size: 3.71 MB
  44. ruby-libs-3.3.10-5.module+el8+1927+aa239d8c.x86_64.rpm
    MD5: 762ff87779c7ac16b7c5f93f7cb966dc
    SHA-256: 78d6be335ef5ee5e1463471b02a248be590b759acb990469f5fe5fcdaad8eca7
    Size: 4.03 MB