ruby:3.3 security update
エラータID: AXSA:2025-11557:01
Release date:
Friday, December 19, 2025 - 00:50
Subject:
ruby:3.3 security update
Affected Channels:
MIRACLE LINUX 9 for x86_64
Severity:
Moderate
Description:
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.
Security Fix(es):
* resolv: Denial of Service in resolv gem (CVE-2025-24294)
* rexml: REXML denial of service (CVE-2025-58767)
* When using the + operator to combine URIs, sensitive information like passwords from the original URI can be leaked,
violating RFC3986 and making applications vulnerable to credential exposure. (CVE-2025-61594)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2025-24294
The attack vector is a potential Denial of Service (DoS). The vulnerability is caused by an insufficient check on the length of a decompressed domain name within a DNS packet. An attacker can craft a malicious DNS packet containing a highly compressed domain name. When the resolv library parses such a packet, the name decompression process consumes a large amount of CPU resources, as the library does not limit the resulting length of the name. This resource consumption can cause the application thread to become unresponsive, resulting in a Denial of Service condition.
CVE-2025-58767
REXML is an XML toolkit for Ruby. The REXML gems from 3.3.3 to 3.4.1 has a DoS vulnerability when parsing XML containing multiple XML declarations. If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities. The REXML gem 3.4.2 or later include the patches to fix these vulnerabilities.
CVE-2025-61594
When using the + operator to combine URIs, sensitive information like passwords from the original URI can be leaked,
violating RFC3986 and making applications vulnerable to credential exposure.
Modularity name: "ruby"
Stream name: "3.3"
Solution:
Update packages.
CVEs:
CVE-2025-24294
The attack vector is a potential Denial of Service (DoS). The vulnerability is caused by an insufficient check on the length of a decompressed domain name within a DNS packet. An attacker can craft a malicious DNS packet containing a highly compressed domain name. When the resolv library parses such a packet, the name decompression process consumes a large amount of CPU resources, as the library does not limit the resulting length of the name. This resource consumption can cause the application thread to become unresponsive, resulting in a Denial of Service condition.
The attack vector is a potential Denial of Service (DoS). The vulnerability is caused by an insufficient check on the length of a decompressed domain name within a DNS packet. An attacker can craft a malicious DNS packet containing a highly compressed domain name. When the resolv library parses such a packet, the name decompression process consumes a large amount of CPU resources, as the library does not limit the resulting length of the name. This resource consumption can cause the application thread to become unresponsive, resulting in a Denial of Service condition.
CVE-2025-58767
REXML is an XML toolkit for Ruby. The REXML gems from 3.3.3 to 3.4.1 has a DoS vulnerability when parsing XML containing multiple XML declarations. If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities. The REXML gem 3.4.2 or later include the patches to fix these vulnerabilities.
REXML is an XML toolkit for Ruby. The REXML gems from 3.3.3 to 3.4.1 has a DoS vulnerability when parsing XML containing multiple XML declarations. If you need to parse untrusted XMLs, you may be impacted to these vulnerabilities. The REXML gem 3.4.2 or later include the patches to fix these vulnerabilities.
Additional Info:
N/A
Download:
SRPMS
- rpm-local-generator-support-1-1.module+el9+1116+f777a129.src.rpm
MD5: f8ea11287335752e8316608947e5a898
SHA-256: b6a04ab509a8b1fc5814c54cce34ddbf24073f60817a732a7c9c54e98ece7b88
Size: 7.31 kB - rubygem-mysql2-0.5.5-3.module+el9+1116+f777a129.src.rpm
MD5: c81ae7a1ad5066782f46e6d7d3afce76
SHA-256: 709d9bf071d9e7c0e87fb7fe9cdb760c01bdc25a9138958c3ebecb6acb01c075
Size: 139.16 kB - rubygem-pg-1.5.4-1.module+el9+1116+f777a129.ML.1.src.rpm
MD5: ab4b44f8f8a7e49c2b2c3df246a3aaef
SHA-256: 5e8cd760c5faf4a84b1121541cbbf21d26d22e4939f628de383f29839f77676d
Size: 306.05 kB - ruby-3.3.10-5.module+el9+1116+f777a129.src.rpm
MD5: 5b3e7066f7b3526b3f1a3a70b90b3637
SHA-256: e029ae7e788a34a00bb1e06b789f033bfc1c407c93226c2ea8b9fe708f048f88
Size: 15.77 MB
Asianux Server 9 for x86_64
- ruby-3.3.10-5.module+el9+1116+f777a129.i686.rpm
MD5: ebde4d51cabda977a872acba6118c112
SHA-256: 0f3b016f3b9efb3e08b00a8a096f3d66d00f88c1c88cbcc27019df010f34a1a8
Size: 37.71 kB - ruby-3.3.10-5.module+el9+1116+f777a129.x86_64.rpm
MD5: 416abd20b28a78c0df37880584ccd471
SHA-256: 95a8069b820faf131645d2fc25dd061a81b625d868cb6ff851d40eae03167364
Size: 37.68 kB - ruby-bundled-gems-3.3.10-5.module+el9+1116+f777a129.i686.rpm
MD5: ec984dc5f27d05bad07dae884a823287
SHA-256: 98b9bf3306c0eec50e6adaf91169a5c1109aa10cf922c4a37d42979833018af8
Size: 298.79 kB - ruby-bundled-gems-3.3.10-5.module+el9+1116+f777a129.x86_64.rpm
MD5: 5ea384c593def0222bc063c7a4fdf77f
SHA-256: da8e1db5b9fc0b0500c5b523731a7e28b2f49eaa088d913d48ec79dab5d9a7fc
Size: 298.46 kB - ruby-debugsource-3.3.10-5.module+el9+1116+f777a129.i686.rpm
MD5: 753395af205e67365dff4a767ce1324b
SHA-256: 087429b534b4817ea66b821578764edb1c9b77060a3924b5f3579f33b0567268
Size: 3.91 MB - ruby-debugsource-3.3.10-5.module+el9+1116+f777a129.x86_64.rpm
MD5: ece8bc40128b39884f7b4691ccc1c522
SHA-256: e4a4e9eb85fda02b3aad18638d3b8ed4b7db739cc16dfbc168ea918f3635530f
Size: 4.13 MB - ruby-default-gems-3.3.10-5.module+el9+1116+f777a129.noarch.rpm
MD5: 47f8741241c2efed6e36e2315ff7c98e
SHA-256: 3df56d95eb1da450a209c8a6c86535df828defc86d4fe6cbd821911ca2ca4177
Size: 50.32 kB - ruby-devel-3.3.10-5.module+el9+1116+f777a129.i686.rpm
MD5: c9ea44ea38b772bc32f1c4305beaf7da
SHA-256: d4dc3b51d1546957dbc1e4ab489150a2abdb7a72ca156cb42b133b7b6b46457a
Size: 333.44 kB - ruby-devel-3.3.10-5.module+el9+1116+f777a129.x86_64.rpm
MD5: 1586dd581cca92292ec2284fe0e107e6
SHA-256: 362c67abcdc02b537cf20605b56c460b92d5211f88b70b211f7c9683892e8f6d
Size: 333.79 kB - ruby-doc-3.3.10-5.module+el9+1116+f777a129.noarch.rpm
MD5: 62eb462730b926d590a00172947da9be
SHA-256: d23279fe9b22b9af25d822791d44917a66ad3432ae3983a333963d5227441c2f
Size: 7.80 MB - rubygem-bigdecimal-3.1.5-5.module+el9+1116+f777a129.i686.rpm
MD5: 9d7868efabdcde17c53cbeffb3c5ed18
SHA-256: dbf19e069babe87202087016439c80bba398c66ab594e871fa865ace3f6972df
Size: 70.00 kB - rubygem-bigdecimal-3.1.5-5.module+el9+1116+f777a129.x86_64.rpm
MD5: aa7a012b3d82bde1fb3708670a06f7ea
SHA-256: 1835aa4206358b0ecc3fdeaece20f47fbc00327a0f90f9724f92780b046fc326
Size: 65.06 kB - rubygem-bundler-2.5.22-5.module+el9+1116+f777a129.noarch.rpm
MD5: 7d053c60c1738587cc76e5f584fa80ec
SHA-256: a7d46893fbdcb862cb2b449e0fc14b02c8953b5352171c5765b6295e552ae582
Size: 477.21 kB - rubygem-io-console-0.7.1-5.module+el9+1116+f777a129.i686.rpm
MD5: c3df33bd839a8570a4e7f47b254d8cac
SHA-256: ee147dfccdc16dd443d036367e6d0f14fb6d8206e2bfde9ba6b12043eba57f05
Size: 23.99 kB - rubygem-io-console-0.7.1-5.module+el9+1116+f777a129.x86_64.rpm
MD5: 0eb406f83c78dff231a1ac27c9c92e2d
SHA-256: 2ee82b606d3ee860dab7125c251a86a0680da1a9cc4797bdd4a8c4208eef8bc0
Size: 22.46 kB - rubygem-irb-1.13.1-5.module+el9+1116+f777a129.noarch.rpm
MD5: c1deac7a35e495ad120fa4e95bc6cc21
SHA-256: 0f2e7a18b965e31fd0cceedbec588376982e23a5a7a5e7982ac27856b2eb9724
Size: 104.02 kB - rubygem-json-2.7.2-5.module+el9+1116+f777a129.i686.rpm
MD5: 30ca31069bc259f624417389ae3f0b1f
SHA-256: 1eaff1707b5e370e2f579f669726fa11cbdb61c3b3eed1eaf21f229f8df7ef2b
Size: 59.92 kB - rubygem-json-2.7.2-5.module+el9+1116+f777a129.x86_64.rpm
MD5: f4ca9c533891da7ce00bada772728b61
SHA-256: 04c8f6f4e991f42a12cb405d4195dc382ab3dba1c90054c5d5276215e0245871
Size: 58.23 kB - rubygem-minitest-5.20.0-5.module+el9+1116+f777a129.noarch.rpm
MD5: 5f3e32db3ca53a6c97fe781b060e1138
SHA-256: 7b1dc6353991e8f618ee4d0e4c3b48579428bb0bdf55175e4e61c9e954a59d4a
Size: 95.17 kB - rubygem-mysql2-0.5.5-3.module+el9+1116+f777a129.x86_64.rpm
MD5: 5cbbaa0a0df972486849e820c8b18f4a
SHA-256: 3ef49cd79a6cb903a40f7f311ea6a954e276b017e122a1a18ea0f3ec2e5344ca
Size: 49.64 kB - rubygem-mysql2-debugsource-0.5.5-3.module+el9+1116+f777a129.x86_64.rpm
MD5: b65b80fb9b9a70eeaed58a514076cf7e
SHA-256: 5df233c1478434f088f4e717359e0f92919b88bc3dbe8d9457520b6bdaa9e81b
Size: 35.63 kB - rubygem-mysql2-doc-0.5.5-3.module+el9+1116+f777a129.noarch.rpm
MD5: ea92b0cc4285de7ec96957411a7df5ba
SHA-256: 14ed5d218eeae9fc2a240ce8f4225f20851f8a4692c12d2eef5373ea8768e16f
Size: 347.22 kB - rubygem-pg-1.5.4-1.module+el9+1116+f777a129.ML.1.x86_64.rpm
MD5: cc91d4bfda74b5f4ce614f8c78f966ff
SHA-256: 321ebdd302305766f6cb35e3de7cbbdb07d2cad42932f3f4b96f84b3b4b3234b
Size: 124.79 kB - rubygem-pg-debugsource-1.5.4-1.module+el9+1116+f777a129.ML.1.x86_64.rpm
MD5: 645d84ee30411c6e21900e82b7f30b69
SHA-256: bd2681e2a86369025423df04857b5f8663d0a2bee782a8e2650d3476a778c1cd
Size: 101.54 kB - rubygem-pg-doc-1.5.4-1.module+el9+1116+f777a129.ML.1.noarch.rpm
MD5: 51432c9f7d03414a258319355edda9f7
SHA-256: 683e32028640da4be9a61e5f06030f7316b318373fb5851937ea57df8f070ebd
Size: 765.13 kB - rubygem-power_assert-2.0.3-5.module+el9+1116+f777a129.noarch.rpm
MD5: f4ce2cf470bf13a1692400f703683194
SHA-256: 0b8c25c0a59bb3b46b80f0857a54706e0798b7696504e86db8a34cf3464a6a8a
Size: 25.32 kB - rubygem-psych-5.1.2-5.module+el9+1116+f777a129.i686.rpm
MD5: 5397d4d6df200ee58adc9b4808d8a812
SHA-256: 3344c40069d5ebc662aa7f5385bb348f51f0cb96e6eac9590fc62fab2d3a2354
Size: 59.73 kB - rubygem-psych-5.1.2-5.module+el9+1116+f777a129.x86_64.rpm
MD5: a069f4d088fe5a94477afa4e662ef98b
SHA-256: 204c318d618702ad054cf3ce66ae239fe34cd80d756ceb440a49cb905d1579fa
Size: 58.77 kB - rubygem-racc-1.7.3-5.module+el9+1116+f777a129.i686.rpm
MD5: 13986c37457266e667658f429180bead
SHA-256: f661db7821c6c3eafb9f503586d8edac7a3e2091b65e46e6d1bc90f127abcad6
Size: 80.48 kB - rubygem-racc-1.7.3-5.module+el9+1116+f777a129.x86_64.rpm
MD5: 826a0ee8f6c13c7332d7b8906fa24249
SHA-256: 85879d2cad676ce87824fb5efb957b558d49c3b7b8aab5041be321e8fe52f85c
Size: 80.03 kB - rubygem-rake-13.1.0-5.module+el9+1116+f777a129.noarch.rpm
MD5: 52e042d7cf5ebba673bd26171c184ab1
SHA-256: 5d629f3674971ce175277dff500602caa859b8634ac2248ebf828c9313523b6d
Size: 100.79 kB - rubygem-rbs-3.4.0-5.module+el9+1116+f777a129.i686.rpm
MD5: 64301a1712bd09b0609f6b8e8bb5657e
SHA-256: bbd097728d53a286e04e8327decf6420a48d0a516ef1d972f372246e5a2b0009
Size: 0.98 MB - rubygem-rbs-3.4.0-5.module+el9+1116+f777a129.x86_64.rpm
MD5: e1ee19fbaf7b37c4bc01a744fa903ff8
SHA-256: abc0fab45a2d10486a11fb788d2fa0e311ab56a734cb7d00a864ed9854d10df4
Size: 0.98 MB - rubygem-rdoc-6.6.3.1-5.module+el9+1116+f777a129.noarch.rpm
MD5: 2b9d3e0564ecbcd046f0cf5b462af119
SHA-256: 109586993e6d4eb00df770173e518ea7f41cd84ce6ccadbeccad0f7d1ae4a8ea
Size: 502.15 kB - rubygem-rexml-3.4.4-5.module+el9+1116+f777a129.noarch.rpm
MD5: b481b42485aaba8903541b493565af48
SHA-256: cb7f23ce252d774f4d750dc0d964a815f1e1d612adc8c7fa15e4f6d062c978a5
Size: 119.03 kB - rubygem-rss-0.3.1-5.module+el9+1116+f777a129.noarch.rpm
MD5: 558904b0674a0a86813429ccd6f353a2
SHA-256: 2ec20f8fb05cf169f761e7fe413a3f0140caa5b310fc67eadad5d041a29a8fb7
Size: 68.28 kB - rubygems-3.5.22-5.module+el9+1116+f777a129.noarch.rpm
MD5: cb8777a29cc510de8fbaa68ddb71a5b5
SHA-256: cdaf2a54ebd99dbc163f8ecd0c434d0392bd84daaf61418c11155757c7179cb0
Size: 411.89 kB - rubygems-devel-3.5.22-5.module+el9+1116+f777a129.noarch.rpm
MD5: c836a7130f2fdbe9d16af2dc77858bd6
SHA-256: 34fde91b1a9f61398a388311d435242da1586137ae2e793a011630de2f93269b
Size: 12.67 kB - rubygem-test-unit-3.6.1-5.module+el9+1116+f777a129.noarch.rpm
MD5: d28890626c101c764cff09e5f3cd54f0
SHA-256: dafd310ff255c0d2b11cd5c2cdf99593a65dd5682af4d6cb3d87eb2f6a32b982
Size: 110.16 kB - rubygem-typeprof-0.21.9-5.module+el9+1116+f777a129.noarch.rpm
MD5: b712a3d268fc9292e16c8272cf8dfad4
SHA-256: deb3ae1625449953da879df13da226b104f7ada6aa9ee72d68f45d12335b9e37
Size: 78.98 kB - ruby-libs-3.3.10-5.module+el9+1116+f777a129.i686.rpm
MD5: 4622bc7304478d6793ffde5172b25215
SHA-256: bcf03dc7a8e80280eb73e23464ef9d218fee46a867b0363344fbecb0cba0a425
Size: 3.68 MB - ruby-libs-3.3.10-5.module+el9+1116+f777a129.x86_64.rpm
MD5: 933dc162f5a36adaf096e31d749f6715
SHA-256: 15ec29c7b9abc1204b4e0baa95f65218ac5c99f4daaaa813f240ad6bf2ec9398
Size: 4.06 MB