ruby-3.0.7-166.el9_7
エラータID: AXSA:2026-694:02
リリース日:
2026/05/21 Thursday - 15:19
題名:
ruby-3.0.7-166.el9_7
影響のあるチャネル:
MIRACLE LINUX 9 for x86_64
Severity:
High
Description:
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.
Security Fix(es):
* erb: ERB: Arbitrary code execution via deserialization bypass (CVE-2026-41316)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
CVE-2026-41316
ERB is a templating system for Ruby. Ruby 2.7.0 (before ERB 2.2.0 was published on rubygems.org) introduced an `@_init` instance variable guard in `ERB#result` and `ERB#run` to prevent code execution when an ERB object is reconstructed via `Marshal.load` (deserialization). However, three other public methods that also evaluate `@src` via `eval()` were not given the same guard: `ERB#def_method`, `ERB#def_module`, and `ERB#def_class`. An attacker who can trigger `Marshal.load` on untrusted data in a Ruby application that has `erb` loaded can use `ERB#def_module` (zero-arg, default parameters) as a code execution sink, bypassing the `@_init` protection entirely. ERB 4.0.3.1, 4.0.4.1, 6.0.1.1, and 6.0.4 patch the issue.
解決策:
Update packages.
CVE:
CVE-2026-41316
ERB is a templating system for Ruby. Ruby 2.7.0 (before ERB 2.2.0 was published on rubygems.org) introduced an `@_init` instance variable guard in `ERB#result` and `ERB#run` to prevent code execution when an ERB object is reconstructed via `Marshal.load` (deserialization). However, three other public methods that also evaluate `@src` via `eval()` were not given the same guard: `ERB#def_method`, `ERB#def_module`, and `ERB#def_class`. An attacker who can trigger `Marshal.load` on untrusted data in a Ruby application that has `erb` loaded can use `ERB#def_module` (zero-arg, default parameters) as a code execution sink, bypassing the `@_init` protection entirely. ERB 4.0.3.1, 4.0.4.1, 6.0.1.1, and 6.0.4 patch the issue.
ERB is a templating system for Ruby. Ruby 2.7.0 (before ERB 2.2.0 was published on rubygems.org) introduced an `@_init` instance variable guard in `ERB#result` and `ERB#run` to prevent code execution when an ERB object is reconstructed via `Marshal.load` (deserialization). However, three other public methods that also evaluate `@src` via `eval()` were not given the same guard: `ERB#def_method`, `ERB#def_module`, and `ERB#def_class`. An attacker who can trigger `Marshal.load` on untrusted data in a Ruby application that has `erb` loaded can use `ERB#def_module` (zero-arg, default parameters) as a code execution sink, bypassing the `@_init` protection entirely. ERB 4.0.3.1, 4.0.4.1, 6.0.1.1, and 6.0.4 patch the issue.
追加情報:
N/A
ダウンロード:
SRPMS
- ruby-3.0.7-166.el9_7.src.rpm
MD5: c38cae3bb1ce51a22c297156da34a506
SHA-256: 505f99213a205579c16da0bd52bbdaf98c83c8e9c6333da67219d93bff40961f
Size: 15.33 MB
Asianux Server 9 for x86_64
- ruby-3.0.7-166.el9_7.i686.rpm
MD5: fdbeec7552c26a5964a92e8b99a6c6c2
SHA-256: b126811bfd0152f32e87bf63eb0c8659cfa6c9b44365f03fabf6bcc1c6396f7f
Size: 37.79 kB - ruby-3.0.7-166.el9_7.x86_64.rpm
MD5: d647d373188a8b447823502831351129
SHA-256: 6d2d030384caa17df1bbacde26acefbb9b74299c79d058303dbda7215b81f39a
Size: 37.74 kB - ruby-default-gems-3.0.7-166.el9_7.noarch.rpm
MD5: 00ea9bd6c251175b6ce15b76ca5343f4
SHA-256: c1237aca4da1af99e915c90b139026b20a36c9e255663911ef9e62eb4ca415e9
Size: 46.16 kB - ruby-devel-3.0.7-166.el9_7.i686.rpm
MD5: a32fa1ee09d4d17707b6c84d772df37f
SHA-256: 8f3a27672e34057d16a1a774532376dc6985a86a865e5ada6b55c05b7b086ab8
Size: 308.44 kB - ruby-devel-3.0.7-166.el9_7.x86_64.rpm
MD5: 6a0e7202088e841ec40b2f65ee84e24e
SHA-256: a8e843e768f63a44bdf58ce8d12a91efe75985a435a4c6c063ff1f4170f62625
Size: 308.47 kB - ruby-doc-3.0.7-166.el9_7.noarch.rpm
MD5: 68ac78ca6d00540e81e8ce252f95024a
SHA-256: 6d4bc72dfd6323565c5626c64e702d947567d878766481619912126745bb3fcd
Size: 7.46 MB - rubygem-bigdecimal-3.0.0-166.el9_7.x86_64.rpm
MD5: ae746e4c27a8b8ff0a52fb835f1452d8
SHA-256: e6051eb353426d1fc3c1dd763170f791e50bd8bdac1ddd2b0c2822cc2719cbe5
Size: 51.06 kB - rubygem-bundler-2.2.33-166.el9_7.noarch.rpm
MD5: af32cb737d5a6d0c9ff09a7650243304
SHA-256: 1966d832e025dc16b8fe75ba8c537092c1d848e7fd51bc646c1d40d3292db079
Size: 441.98 kB - rubygem-io-console-0.5.7-166.el9_7.x86_64.rpm
MD5: 499d291b8d54d4c7a5d5e41a5b27dfcf
SHA-256: e68b00fd1834a35cd19f5a04d2886754f24808a64b224a0ff117025385edce02
Size: 22.07 kB - rubygem-irb-1.3.5-166.el9_7.noarch.rpm
MD5: f441da639154d6b43d00b913b06440a2
SHA-256: 6b02d707c498fef2fac4cbf744a9588b67840db24fbbf5fa803321852fcc36ac
Size: 76.32 kB - rubygem-json-2.5.1-166.el9_7.x86_64.rpm
MD5: 2529d50a9dcf10b815626005980068b5
SHA-256: 06cf0c3c3a97bc32f7cdc32c10d9d7ce3e64c4a1b6a9d362f6d9f5caab16f7fb
Size: 56.91 kB - rubygem-minitest-5.14.2-166.el9_7.noarch.rpm
MD5: 7ae548e97649847d2d6703f9ef88223d
SHA-256: 24b917a7acda1d65ec267edcaab914a53eab00ef3f3ab0fe075a252f423ba758
Size: 84.97 kB - rubygem-power_assert-1.2.1-166.el9_7.noarch.rpm
MD5: 4063c0a089f86ca41870a7d64db7e3cd
SHA-256: 27286218c42b27dc18dd4270c0591fa53cbb178f9fc2428c4c6bd4f0138cb9ea
Size: 25.68 kB - rubygem-psych-3.3.2-166.el9_7.x86_64.rpm
MD5: 79e0f3a7cfe212695ef4e9c5feab632c
SHA-256: b01149c2919088373ca0070a6ad2ceac32d2daa4215f59750a712823b65ab532
Size: 57.70 kB - rubygem-rake-13.0.3-166.el9_7.noarch.rpm
MD5: 525529beac9ad44091cadee28393a338
SHA-256: 673f4a09d06975702e1d895d390313b5ffcea213f21d10c4f9191bce39b2376a
Size: 104.94 kB - rubygem-rbs-1.4.0-166.el9_7.noarch.rpm
MD5: b553c089bf53490a50255f55fb48763f
SHA-256: 59bf91f42e4edd321c4c2382a78b270a3ef9bcf8fd237d0aaee4d82afbb802fc
Size: 525.93 kB - rubygem-rdoc-6.3.4.1-166.el9_7.noarch.rpm
MD5: e97c7253e019d73bddb7ba37afc26f29
SHA-256: 697f9b53dff22c02c308df3110f515f70310d27a7dcb0e5adcacba37ecc48e22
Size: 437.81 kB - rubygem-rexml-3.2.5-166.el9_7.noarch.rpm
MD5: 1c45161ac00f67b8de048d58ce7f8505
SHA-256: df40f423f94c89789f1f380272cb1326c6f333de8ea5ce4dbee55300794301d8
Size: 107.54 kB - rubygem-rss-0.2.9-166.el9_7.noarch.rpm
MD5: 36812160f370afd6ae9f84327c6cf0ec
SHA-256: bbd668d08936b08a8a2bbf912b050790c7f97adce20fc5bf95859766cb0bfc60
Size: 121.62 kB - rubygems-3.2.33-166.el9_7.noarch.rpm
MD5: 25f6f2696ecd51c4fb5f6565232d7ab9
SHA-256: 04bf8979edbdfc447162b15b7169f22cf07da38eaa6d292f4a7caa218328f336
Size: 297.77 kB - rubygems-devel-3.2.33-166.el9_7.noarch.rpm
MD5: 1094988cb706a4b11020ee7d4fe78f1c
SHA-256: 34a6c9e5b9c9b2f9070355a7c9f74e0232720f1255de17af57bea3511b1bdd63
Size: 11.60 kB - rubygem-test-unit-3.3.7-166.el9_7.noarch.rpm
MD5: 40f96345b4cd5bfae73302166dff00c2
SHA-256: fc2a935905ece7ccf604283d2dc61ca6795cc9089e8eee6bd3a1267cfb42c3f3
Size: 144.29 kB - rubygem-typeprof-0.15.2-166.el9_7.noarch.rpm
MD5: 3d88ab3f609de76e29f130367fe4ebc8
SHA-256: c0ea72102d54284936b251b6ee4cc469879e02dc5a4922631ff7313e0bb99d81
Size: 604.76 kB - ruby-libs-3.0.7-166.el9_7.i686.rpm
MD5: eb53f3597c5456a465b563a5bb6aa23d
SHA-256: a87bee4905809befd4e1c464e39c32cc48a70e372fa89ede6fb2bcfc41a97e77
Size: 3.34 MB - ruby-libs-3.0.7-166.el9_7.x86_64.rpm
MD5: 7f4942ebe6ea7515cb4eb1db7ada2202
SHA-256: 5b7d331349835f50271c8213550c63a2c096412072f4197429f35b98c4e6e0ad
Size: 3.25 MB