FEDORA-2018-a85044d389

security update in Fedora 27 for ruby

Status: obsolete

Rebase to Ruby 2.4.4. Includes several CVE fixes. https://www.ruby-lang.org/en/news/2018/03/28/ruby-2-4-4-released/

Comments 6

This update has been submitted for testing by pvalena.

This update has been pushed to testing.

Working.

karma: +1

This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes

worked fine with my ruby dev stuff

karma: +1

This update has been obsoleted by ruby-2.4.4-89.fc27.

Content Type
RPM
Status
obsolete
Test Gating
Submitted by
Update Type
security
Update Severity
medium
Karma
+2
stable threshold: 3
unstable threshold: -3
Autopush
Enabled
Dates
submitted a year ago
in testing a year ago

Related Bugs 7

00 #1561947 CVE-2018-6914 ruby: Unintentional file and directory creation with directory traversal in tempfile and tmpdir
00 #1561948 CVE-2018-8779 ruby: Unintentional socket creation by poisoned NULL byte in UNIXServer and UNIXSocket
00 #1561949 CVE-2018-8780 ruby: Unintentional directory traversal by poisoned NULL byte in Dir
00 #1561950 CVE-2018-8777 ruby: DoS by large request in WEBrick
00 #1561952 CVE-2017-17742 ruby: HTTP response splitting in WEBrick
00 #1561953 CVE-2018-8778 ruby: Buffer under-read in String#unpack
00 #1561957 CVE-2017-17742 CVE-2018-6914 CVE-2018-8777 CVE-2018-8778 CVE-2018-8779 CVE-2018-8780 ruby: various flaws [fedora-all]

Automated Test Results