- ---------------------------------------------------------------------                   Red Hat Security Advisory

Synopsis:          Moderate: ruby security update
Advisory ID:       RHSA-2005:799-01
Advisory URL:      https://access.redhat.com/errata/RHSA-2005:799.html
Issue date:        2005-10-11
Updated on:        2005-10-11
Product:           Red Hat Enterprise Linux
CVE Names:         CAN-2005-2337
- ---------------------------------------------------------------------1. Summary:

Updated ruby packages that fix an arbitrary command execution issue are now
available.

This update has been rated as having moderate security impact by the Red
Hat Security Response Team.

2. Relevant releases/architectures:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386
Red Hat Linux Advanced Workstation 2.1 - 
Red Hat Enterprise Linux ES version 2.1 - i386
Red Hat Enterprise Linux WS version 2.1 - i386
Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Desktop version 3 - i386, x86_64
Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64
Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64
Red Hat Enterprise Linux Desktop version 4 - i386, x86_64
Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64
Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64

3. Problem description:

Ruby is an interpreted scripting language for object-oriented programming.

A bug was found in the way ruby handles eval statements. It is possible for
a malicious script to call eval in such a way that can allow the bypass of
certain safe-level restrictions. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CAN-2005-2337 to this issue.

Users of Ruby should update to these erratum packages, which contain a
backported patch and are not vulnerable to this issue.

4. Solution:

Before applying this update, make sure all previously released errata
relevant to your system have been applied.

This update is available via Red Hat Network.  To use Red Hat Network,
launch the Red Hat Update Agent with the following command:

up2date

This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.

5. Bug IDs fixed (http://bugzilla.redhat.com/):

169575 - CAN-2005-2337 ruby safe-level mode bypass


6. RPMs required:

Red Hat Enterprise Linux AS (Advanced Server) version 2.1:

SRPMS:
512be4c5347af63f6a58b8fa84bbfef5  ruby-1.6.4-2.AS21.2.src.rpm

i386:
b160d0ec2044a95b7efb61f95900e00a  irb-1.6.4-2.AS21.2.i386.rpm
9f3ef7ba6f5f8d4507ec02461cb4013d  ruby-1.6.4-2.AS21.2.i386.rpm
afa4bf7f0f24ce7fa33cb98a909a0745  ruby-devel-1.6.4-2.AS21.2.i386.rpm
d9113fbe1d2786026ac5592218e83155  ruby-docs-1.6.4-2.AS21.2.i386.rpm
0f6fbc236a0e5579d56fcab0069a0898  ruby-libs-1.6.4-2.AS21.2.i386.rpm
a15b7a985249c3154b698d2d173dc76b  ruby-tcltk-1.6.4-2.AS21.2.i386.rpm

Red Hat Linux Advanced Workstation 2.1:

SRPMS:
512be4c5347af63f6a58b8fa84bbfef5  ruby-1.6.4-2.AS21.2.src.rpm

Red Hat Enterprise Linux ES version 2.1:

SRPMS:
512be4c5347af63f6a58b8fa84bbfef5  ruby-1.6.4-2.AS21.2.src.rpm

i386:
b160d0ec2044a95b7efb61f95900e00a  irb-1.6.4-2.AS21.2.i386.rpm
9f3ef7ba6f5f8d4507ec02461cb4013d  ruby-1.6.4-2.AS21.2.i386.rpm
afa4bf7f0f24ce7fa33cb98a909a0745  ruby-devel-1.6.4-2.AS21.2.i386.rpm
d9113fbe1d2786026ac5592218e83155  ruby-docs-1.6.4-2.AS21.2.i386.rpm
0f6fbc236a0e5579d56fcab0069a0898  ruby-libs-1.6.4-2.AS21.2.i386.rpm
a15b7a985249c3154b698d2d173dc76b  ruby-tcltk-1.6.4-2.AS21.2.i386.rpm

Red Hat Enterprise Linux WS version 2.1:

SRPMS:
512be4c5347af63f6a58b8fa84bbfef5  ruby-1.6.4-2.AS21.2.src.rpm

i386:
b160d0ec2044a95b7efb61f95900e00a  irb-1.6.4-2.AS21.2.i386.rpm
9f3ef7ba6f5f8d4507ec02461cb4013d  ruby-1.6.4-2.AS21.2.i386.rpm
afa4bf7f0f24ce7fa33cb98a909a0745  ruby-devel-1.6.4-2.AS21.2.i386.rpm
d9113fbe1d2786026ac5592218e83155  ruby-docs-1.6.4-2.AS21.2.i386.rpm
0f6fbc236a0e5579d56fcab0069a0898  ruby-libs-1.6.4-2.AS21.2.i386.rpm
a15b7a985249c3154b698d2d173dc76b  ruby-tcltk-1.6.4-2.AS21.2.i386.rpm

Red Hat Enterprise Linux AS version 3:

SRPMS:
ba1c6edb962ce63720a6091435acf2d6  ruby-1.6.8-9.EL3.4.src.rpm

i386:
9cb6433cddfe029966e3678479690491  ruby-1.6.8-9.EL3.4.i386.rpm
7e47defcef53ddfc3d98a89e75c78f81  ruby-devel-1.6.8-9.EL3.4.i386.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
4030e23dcfa7fe10a5cde734027eb3d6  ruby-mode-1.6.8-9.EL3.4.i386.rpm

ia64:
2d01fcb09c2c5227d182b95026eebc3e  ruby-1.6.8-9.EL3.4.ia64.rpm
26821bddc91160c309bff6500b2c12f7  ruby-devel-1.6.8-9.EL3.4.ia64.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
0f2b9fc0f08ab13d28fb5e54dd9a6b83  ruby-libs-1.6.8-9.EL3.4.ia64.rpm
fe09a23b04e3f1d4053600822ad65c1d  ruby-mode-1.6.8-9.EL3.4.ia64.rpm

ppc:
540f765447867aeb16240818dddf1b51  ruby-1.6.8-9.EL3.4.ppc.rpm
f08d897f12918bae3f1d8cc38f14e4ee  ruby-devel-1.6.8-9.EL3.4.ppc.rpm
dae0f66e644e971277d2132cdfdc28c3  ruby-libs-1.6.8-9.EL3.4.ppc.rpm
f755c94dca7e2c8ed13f66d03a4c3345  ruby-libs-1.6.8-9.EL3.4.ppc64.rpm
5b9e451baf30eebd5761c4470fb1b277  ruby-mode-1.6.8-9.EL3.4.ppc.rpm

s390:
d45ea42a962ea285094a64e52000a0a4  ruby-1.6.8-9.EL3.4.s390.rpm
b7569711aa3de96895c346917f1ccf3e  ruby-devel-1.6.8-9.EL3.4.s390.rpm
01b278ca30e712b824b96b02eb2d95db  ruby-libs-1.6.8-9.EL3.4.s390.rpm
f70a29c86e5c62aab83421756b5235c4  ruby-mode-1.6.8-9.EL3.4.s390.rpm

s390x:
77f0382e404d1afbcaf1ce826c4b75d3  ruby-1.6.8-9.EL3.4.s390x.rpm
f0c167caac01aad1f7be8d05c6db633f  ruby-devel-1.6.8-9.EL3.4.s390x.rpm
01b278ca30e712b824b96b02eb2d95db  ruby-libs-1.6.8-9.EL3.4.s390.rpm
3345a8783bd6541c2a9de6f5c9dbad73  ruby-libs-1.6.8-9.EL3.4.s390x.rpm
f826b519e02689f84bb872600acedf71  ruby-mode-1.6.8-9.EL3.4.s390x.rpm

x86_64:
6fb32e9309419767b2a45e9a8c9a6bb6  ruby-1.6.8-9.EL3.4.x86_64.rpm
5fe5a710d3a842c405a1db455e587db7  ruby-devel-1.6.8-9.EL3.4.x86_64.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
ffd6c60b15b2841ba3e82bb268701025  ruby-libs-1.6.8-9.EL3.4.x86_64.rpm
cc3cd910a5a5d00984e3914900d5d9af  ruby-mode-1.6.8-9.EL3.4.x86_64.rpm

Red Hat Desktop version 3:

SRPMS:
ba1c6edb962ce63720a6091435acf2d6  ruby-1.6.8-9.EL3.4.src.rpm

i386:
9cb6433cddfe029966e3678479690491  ruby-1.6.8-9.EL3.4.i386.rpm
7e47defcef53ddfc3d98a89e75c78f81  ruby-devel-1.6.8-9.EL3.4.i386.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
4030e23dcfa7fe10a5cde734027eb3d6  ruby-mode-1.6.8-9.EL3.4.i386.rpm

x86_64:
6fb32e9309419767b2a45e9a8c9a6bb6  ruby-1.6.8-9.EL3.4.x86_64.rpm
5fe5a710d3a842c405a1db455e587db7  ruby-devel-1.6.8-9.EL3.4.x86_64.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
ffd6c60b15b2841ba3e82bb268701025  ruby-libs-1.6.8-9.EL3.4.x86_64.rpm
cc3cd910a5a5d00984e3914900d5d9af  ruby-mode-1.6.8-9.EL3.4.x86_64.rpm

Red Hat Enterprise Linux ES version 3:

SRPMS:
ba1c6edb962ce63720a6091435acf2d6  ruby-1.6.8-9.EL3.4.src.rpm

i386:
9cb6433cddfe029966e3678479690491  ruby-1.6.8-9.EL3.4.i386.rpm
7e47defcef53ddfc3d98a89e75c78f81  ruby-devel-1.6.8-9.EL3.4.i386.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
4030e23dcfa7fe10a5cde734027eb3d6  ruby-mode-1.6.8-9.EL3.4.i386.rpm

ia64:
2d01fcb09c2c5227d182b95026eebc3e  ruby-1.6.8-9.EL3.4.ia64.rpm
26821bddc91160c309bff6500b2c12f7  ruby-devel-1.6.8-9.EL3.4.ia64.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
0f2b9fc0f08ab13d28fb5e54dd9a6b83  ruby-libs-1.6.8-9.EL3.4.ia64.rpm
fe09a23b04e3f1d4053600822ad65c1d  ruby-mode-1.6.8-9.EL3.4.ia64.rpm

x86_64:
6fb32e9309419767b2a45e9a8c9a6bb6  ruby-1.6.8-9.EL3.4.x86_64.rpm
5fe5a710d3a842c405a1db455e587db7  ruby-devel-1.6.8-9.EL3.4.x86_64.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
ffd6c60b15b2841ba3e82bb268701025  ruby-libs-1.6.8-9.EL3.4.x86_64.rpm
cc3cd910a5a5d00984e3914900d5d9af  ruby-mode-1.6.8-9.EL3.4.x86_64.rpm

Red Hat Enterprise Linux WS version 3:

SRPMS:
ba1c6edb962ce63720a6091435acf2d6  ruby-1.6.8-9.EL3.4.src.rpm

i386:
9cb6433cddfe029966e3678479690491  ruby-1.6.8-9.EL3.4.i386.rpm
7e47defcef53ddfc3d98a89e75c78f81  ruby-devel-1.6.8-9.EL3.4.i386.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
4030e23dcfa7fe10a5cde734027eb3d6  ruby-mode-1.6.8-9.EL3.4.i386.rpm

ia64:
2d01fcb09c2c5227d182b95026eebc3e  ruby-1.6.8-9.EL3.4.ia64.rpm
26821bddc91160c309bff6500b2c12f7  ruby-devel-1.6.8-9.EL3.4.ia64.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
0f2b9fc0f08ab13d28fb5e54dd9a6b83  ruby-libs-1.6.8-9.EL3.4.ia64.rpm
fe09a23b04e3f1d4053600822ad65c1d  ruby-mode-1.6.8-9.EL3.4.ia64.rpm

x86_64:
6fb32e9309419767b2a45e9a8c9a6bb6  ruby-1.6.8-9.EL3.4.x86_64.rpm
5fe5a710d3a842c405a1db455e587db7  ruby-devel-1.6.8-9.EL3.4.x86_64.rpm
4ffcd05c9a884e8cfbffdad1b06bb005  ruby-libs-1.6.8-9.EL3.4.i386.rpm
ffd6c60b15b2841ba3e82bb268701025  ruby-libs-1.6.8-9.EL3.4.x86_64.rpm
cc3cd910a5a5d00984e3914900d5d9af  ruby-mode-1.6.8-9.EL3.4.x86_64.rpm

Red Hat Enterprise Linux AS version 4:

SRPMS:
673c93e27b38e354b9e8e173937288f7  ruby-1.8.1-7.EL4.2.src.rpm

i386:
6ec9f092ed3094669b1f43e82b4a40df  irb-1.8.1-7.EL4.2.i386.rpm
b1e9af2d2668ae5989115a2995e834b5  ruby-1.8.1-7.EL4.2.i386.rpm
275d26e3a6e4fc1007717dfffb3cca8b  ruby-devel-1.8.1-7.EL4.2.i386.rpm
e6db944c8bbd8020a41d23f369a05aeb  ruby-docs-1.8.1-7.EL4.2.i386.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
057d421609b691efe5b0d3203a9cf883  ruby-mode-1.8.1-7.EL4.2.i386.rpm
4003f9d1d5113f0b63fd06c06fb08cc5  ruby-tcltk-1.8.1-7.EL4.2.i386.rpm

ia64:
de01d0b901cf17b57f1fc94b8490df0a  irb-1.8.1-7.EL4.2.ia64.rpm
192e2eb1b1a55d4016d8bb1a93dfc890  ruby-1.8.1-7.EL4.2.ia64.rpm
4511c863b31c05c74d75996cf50cf4f3  ruby-devel-1.8.1-7.EL4.2.ia64.rpm
4058641b6d1ed4961729ed0085e058f3  ruby-docs-1.8.1-7.EL4.2.ia64.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
a83241a836a7cfd2d474831585c30094  ruby-libs-1.8.1-7.EL4.2.ia64.rpm
e940a953cd80194eeb026364e14f071d  ruby-mode-1.8.1-7.EL4.2.ia64.rpm
79d757f22b7e55a2fabcd950de1cb849  ruby-tcltk-1.8.1-7.EL4.2.ia64.rpm

ppc:
dc5356265e6dc2c07eebc58305125824  irb-1.8.1-7.EL4.2.ppc.rpm
fc4faa46e23fbce57e40c587beef1cf2  ruby-1.8.1-7.EL4.2.ppc.rpm
9117843d1ee8d6c2619e3cafda73b93d  ruby-devel-1.8.1-7.EL4.2.ppc.rpm
52e5f6cb05686fc7708ec26ad0f83176  ruby-docs-1.8.1-7.EL4.2.ppc.rpm
6fe945b7e0a65661e88999e88740946f  ruby-libs-1.8.1-7.EL4.2.ppc.rpm
971b2850d883df6d4c3536cc1eee01ab  ruby-libs-1.8.1-7.EL4.2.ppc64.rpm
3f82d9bb7fe0887eba0502324c6a78d1  ruby-mode-1.8.1-7.EL4.2.ppc.rpm
75693ea1a2156d4cb3ec5b08c2b70a98  ruby-tcltk-1.8.1-7.EL4.2.ppc.rpm

s390:
4fe0676d53f3f31aaaae9787b813d594  irb-1.8.1-7.EL4.2.s390.rpm
72bbbc558e22c00cc8c38120574752bb  ruby-1.8.1-7.EL4.2.s390.rpm
fc2195a2febc1c74e8501c447e2f785f  ruby-devel-1.8.1-7.EL4.2.s390.rpm
d8073699e13d286bcf8627eef5a4a71e  ruby-docs-1.8.1-7.EL4.2.s390.rpm
33f55b11c54e1b6a3ba17df31af1a1ea  ruby-libs-1.8.1-7.EL4.2.s390.rpm
eee88708e3a173468b77efd0e366dced  ruby-mode-1.8.1-7.EL4.2.s390.rpm
c55ebaa57529808ab4a9bd6e95f9406c  ruby-tcltk-1.8.1-7.EL4.2.s390.rpm

s390x:
6ae043140c8b5b0e9c2227495abf3bd8  irb-1.8.1-7.EL4.2.s390x.rpm
7035c1dc93315c529b80f61370f3d9d8  ruby-1.8.1-7.EL4.2.s390x.rpm
eeebcbceeb5e216d7e9cc5fb10dde21f  ruby-devel-1.8.1-7.EL4.2.s390x.rpm
a3215c6cf80d4ecede32778b8deff2e5  ruby-docs-1.8.1-7.EL4.2.s390x.rpm
33f55b11c54e1b6a3ba17df31af1a1ea  ruby-libs-1.8.1-7.EL4.2.s390.rpm
b76da181aefba027bf7663d79180784c  ruby-libs-1.8.1-7.EL4.2.s390x.rpm
271d78e5468e8d584d51a059510585ab  ruby-mode-1.8.1-7.EL4.2.s390x.rpm
50481c061d1de4c90ffea0be0e755df9  ruby-tcltk-1.8.1-7.EL4.2.s390x.rpm

x86_64:
d90051ede9a3519dd4829b8e4c4e569f  irb-1.8.1-7.EL4.2.x86_64.rpm
d1dba9746515b89c13e7a6853325ff88  ruby-1.8.1-7.EL4.2.x86_64.rpm
148ec3cbc5268fe5c3790050131b925a  ruby-devel-1.8.1-7.EL4.2.x86_64.rpm
24257acaca983be34ddc3496b46046c7  ruby-docs-1.8.1-7.EL4.2.x86_64.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
3eede611d89ab5a7a68b07b39f59f31b  ruby-libs-1.8.1-7.EL4.2.x86_64.rpm
78da918cd444371a73b0d855c7b01568  ruby-mode-1.8.1-7.EL4.2.x86_64.rpm
de1fbccdb90a01c5b00433d44fd594f7  ruby-tcltk-1.8.1-7.EL4.2.x86_64.rpm

Red Hat Enterprise Linux Desktop version 4:

SRPMS:
673c93e27b38e354b9e8e173937288f7  ruby-1.8.1-7.EL4.2.src.rpm

i386:
6ec9f092ed3094669b1f43e82b4a40df  irb-1.8.1-7.EL4.2.i386.rpm
b1e9af2d2668ae5989115a2995e834b5  ruby-1.8.1-7.EL4.2.i386.rpm
275d26e3a6e4fc1007717dfffb3cca8b  ruby-devel-1.8.1-7.EL4.2.i386.rpm
e6db944c8bbd8020a41d23f369a05aeb  ruby-docs-1.8.1-7.EL4.2.i386.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
057d421609b691efe5b0d3203a9cf883  ruby-mode-1.8.1-7.EL4.2.i386.rpm
4003f9d1d5113f0b63fd06c06fb08cc5  ruby-tcltk-1.8.1-7.EL4.2.i386.rpm

x86_64:
d90051ede9a3519dd4829b8e4c4e569f  irb-1.8.1-7.EL4.2.x86_64.rpm
d1dba9746515b89c13e7a6853325ff88  ruby-1.8.1-7.EL4.2.x86_64.rpm
148ec3cbc5268fe5c3790050131b925a  ruby-devel-1.8.1-7.EL4.2.x86_64.rpm
24257acaca983be34ddc3496b46046c7  ruby-docs-1.8.1-7.EL4.2.x86_64.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
3eede611d89ab5a7a68b07b39f59f31b  ruby-libs-1.8.1-7.EL4.2.x86_64.rpm
78da918cd444371a73b0d855c7b01568  ruby-mode-1.8.1-7.EL4.2.x86_64.rpm
de1fbccdb90a01c5b00433d44fd594f7  ruby-tcltk-1.8.1-7.EL4.2.x86_64.rpm

Red Hat Enterprise Linux ES version 4:

SRPMS:
673c93e27b38e354b9e8e173937288f7  ruby-1.8.1-7.EL4.2.src.rpm

i386:
6ec9f092ed3094669b1f43e82b4a40df  irb-1.8.1-7.EL4.2.i386.rpm
b1e9af2d2668ae5989115a2995e834b5  ruby-1.8.1-7.EL4.2.i386.rpm
275d26e3a6e4fc1007717dfffb3cca8b  ruby-devel-1.8.1-7.EL4.2.i386.rpm
e6db944c8bbd8020a41d23f369a05aeb  ruby-docs-1.8.1-7.EL4.2.i386.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
057d421609b691efe5b0d3203a9cf883  ruby-mode-1.8.1-7.EL4.2.i386.rpm
4003f9d1d5113f0b63fd06c06fb08cc5  ruby-tcltk-1.8.1-7.EL4.2.i386.rpm

ia64:
de01d0b901cf17b57f1fc94b8490df0a  irb-1.8.1-7.EL4.2.ia64.rpm
192e2eb1b1a55d4016d8bb1a93dfc890  ruby-1.8.1-7.EL4.2.ia64.rpm
4511c863b31c05c74d75996cf50cf4f3  ruby-devel-1.8.1-7.EL4.2.ia64.rpm
4058641b6d1ed4961729ed0085e058f3  ruby-docs-1.8.1-7.EL4.2.ia64.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
a83241a836a7cfd2d474831585c30094  ruby-libs-1.8.1-7.EL4.2.ia64.rpm
e940a953cd80194eeb026364e14f071d  ruby-mode-1.8.1-7.EL4.2.ia64.rpm
79d757f22b7e55a2fabcd950de1cb849  ruby-tcltk-1.8.1-7.EL4.2.ia64.rpm

x86_64:
d90051ede9a3519dd4829b8e4c4e569f  irb-1.8.1-7.EL4.2.x86_64.rpm
d1dba9746515b89c13e7a6853325ff88  ruby-1.8.1-7.EL4.2.x86_64.rpm
148ec3cbc5268fe5c3790050131b925a  ruby-devel-1.8.1-7.EL4.2.x86_64.rpm
24257acaca983be34ddc3496b46046c7  ruby-docs-1.8.1-7.EL4.2.x86_64.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
3eede611d89ab5a7a68b07b39f59f31b  ruby-libs-1.8.1-7.EL4.2.x86_64.rpm
78da918cd444371a73b0d855c7b01568  ruby-mode-1.8.1-7.EL4.2.x86_64.rpm
de1fbccdb90a01c5b00433d44fd594f7  ruby-tcltk-1.8.1-7.EL4.2.x86_64.rpm

Red Hat Enterprise Linux WS version 4:

SRPMS:
673c93e27b38e354b9e8e173937288f7  ruby-1.8.1-7.EL4.2.src.rpm

i386:
6ec9f092ed3094669b1f43e82b4a40df  irb-1.8.1-7.EL4.2.i386.rpm
b1e9af2d2668ae5989115a2995e834b5  ruby-1.8.1-7.EL4.2.i386.rpm
275d26e3a6e4fc1007717dfffb3cca8b  ruby-devel-1.8.1-7.EL4.2.i386.rpm
e6db944c8bbd8020a41d23f369a05aeb  ruby-docs-1.8.1-7.EL4.2.i386.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
057d421609b691efe5b0d3203a9cf883  ruby-mode-1.8.1-7.EL4.2.i386.rpm
4003f9d1d5113f0b63fd06c06fb08cc5  ruby-tcltk-1.8.1-7.EL4.2.i386.rpm

ia64:
de01d0b901cf17b57f1fc94b8490df0a  irb-1.8.1-7.EL4.2.ia64.rpm
192e2eb1b1a55d4016d8bb1a93dfc890  ruby-1.8.1-7.EL4.2.ia64.rpm
4511c863b31c05c74d75996cf50cf4f3  ruby-devel-1.8.1-7.EL4.2.ia64.rpm
4058641b6d1ed4961729ed0085e058f3  ruby-docs-1.8.1-7.EL4.2.ia64.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
a83241a836a7cfd2d474831585c30094  ruby-libs-1.8.1-7.EL4.2.ia64.rpm
e940a953cd80194eeb026364e14f071d  ruby-mode-1.8.1-7.EL4.2.ia64.rpm
79d757f22b7e55a2fabcd950de1cb849  ruby-tcltk-1.8.1-7.EL4.2.ia64.rpm

x86_64:
d90051ede9a3519dd4829b8e4c4e569f  irb-1.8.1-7.EL4.2.x86_64.rpm
d1dba9746515b89c13e7a6853325ff88  ruby-1.8.1-7.EL4.2.x86_64.rpm
148ec3cbc5268fe5c3790050131b925a  ruby-devel-1.8.1-7.EL4.2.x86_64.rpm
24257acaca983be34ddc3496b46046c7  ruby-docs-1.8.1-7.EL4.2.x86_64.rpm
f9b40a658fe96d6ba7feda919c60ab5f  ruby-libs-1.8.1-7.EL4.2.i386.rpm
3eede611d89ab5a7a68b07b39f59f31b  ruby-libs-1.8.1-7.EL4.2.x86_64.rpm
78da918cd444371a73b0d855c7b01568  ruby-mode-1.8.1-7.EL4.2.x86_64.rpm
de1fbccdb90a01c5b00433d44fd594f7  ruby-tcltk-1.8.1-7.EL4.2.x86_64.rpm

These packages are GPG signed by Red Hat for security.  Our key and 
details on how to verify the signature are available from
https://www.redhat.com/security/team/key/#package

7. References:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2337

8. Contact:

The Red Hat security contact is .  More contact
details at https://www.redhat.com/security/team/contact/

Copyright 2005 Red Hat, Inc.

RedHat: Moderate: ruby security update

Updated ruby packages that fix an arbitrary command execution issue are now available

Summary



Summary

Ruby is an interpreted scripting language for object-oriented programming. A bug was found in the way ruby handles eval statements. It is possible for a malicious script to call eval in such a way that can allow the bypass of certain safe-level restrictions. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2005-2337 to this issue. Users of Ruby should update to these erratum packages, which contain a backported patch and are not vulnerable to this issue.


Solution

Before applying this update, make sure all previously released errata relevant to your system have been applied.
This update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate RPMs being upgraded on your system.
5. Bug IDs fixed (http://bugzilla.redhat.com/):
169575 - CAN-2005-2337 ruby safe-level mode bypass

6. RPMs required:
Red Hat Enterprise Linux AS (Advanced Server) version 2.1:
SRPMS: 512be4c5347af63f6a58b8fa84bbfef5 ruby-1.6.4-2.AS21.2.src.rpm
i386: b160d0ec2044a95b7efb61f95900e00a irb-1.6.4-2.AS21.2.i386.rpm 9f3ef7ba6f5f8d4507ec02461cb4013d ruby-1.6.4-2.AS21.2.i386.rpm afa4bf7f0f24ce7fa33cb98a909a0745 ruby-devel-1.6.4-2.AS21.2.i386.rpm d9113fbe1d2786026ac5592218e83155 ruby-docs-1.6.4-2.AS21.2.i386.rpm 0f6fbc236a0e5579d56fcab0069a0898 ruby-libs-1.6.4-2.AS21.2.i386.rpm a15b7a985249c3154b698d2d173dc76b ruby-tcltk-1.6.4-2.AS21.2.i386.rpm
Red Hat Linux Advanced Workstation 2.1:
SRPMS: 512be4c5347af63f6a58b8fa84bbfef5 ruby-1.6.4-2.AS21.2.src.rpm
Red Hat Enterprise Linux ES version 2.1:
SRPMS: 512be4c5347af63f6a58b8fa84bbfef5 ruby-1.6.4-2.AS21.2.src.rpm
i386: b160d0ec2044a95b7efb61f95900e00a irb-1.6.4-2.AS21.2.i386.rpm 9f3ef7ba6f5f8d4507ec02461cb4013d ruby-1.6.4-2.AS21.2.i386.rpm afa4bf7f0f24ce7fa33cb98a909a0745 ruby-devel-1.6.4-2.AS21.2.i386.rpm d9113fbe1d2786026ac5592218e83155 ruby-docs-1.6.4-2.AS21.2.i386.rpm 0f6fbc236a0e5579d56fcab0069a0898 ruby-libs-1.6.4-2.AS21.2.i386.rpm a15b7a985249c3154b698d2d173dc76b ruby-tcltk-1.6.4-2.AS21.2.i386.rpm
Red Hat Enterprise Linux WS version 2.1:
SRPMS: 512be4c5347af63f6a58b8fa84bbfef5 ruby-1.6.4-2.AS21.2.src.rpm
i386: b160d0ec2044a95b7efb61f95900e00a irb-1.6.4-2.AS21.2.i386.rpm 9f3ef7ba6f5f8d4507ec02461cb4013d ruby-1.6.4-2.AS21.2.i386.rpm afa4bf7f0f24ce7fa33cb98a909a0745 ruby-devel-1.6.4-2.AS21.2.i386.rpm d9113fbe1d2786026ac5592218e83155 ruby-docs-1.6.4-2.AS21.2.i386.rpm 0f6fbc236a0e5579d56fcab0069a0898 ruby-libs-1.6.4-2.AS21.2.i386.rpm a15b7a985249c3154b698d2d173dc76b ruby-tcltk-1.6.4-2.AS21.2.i386.rpm
Red Hat Enterprise Linux AS version 3:
SRPMS: ba1c6edb962ce63720a6091435acf2d6 ruby-1.6.8-9.EL3.4.src.rpm
i386: 9cb6433cddfe029966e3678479690491 ruby-1.6.8-9.EL3.4.i386.rpm 7e47defcef53ddfc3d98a89e75c78f81 ruby-devel-1.6.8-9.EL3.4.i386.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm 4030e23dcfa7fe10a5cde734027eb3d6 ruby-mode-1.6.8-9.EL3.4.i386.rpm
ia64: 2d01fcb09c2c5227d182b95026eebc3e ruby-1.6.8-9.EL3.4.ia64.rpm 26821bddc91160c309bff6500b2c12f7 ruby-devel-1.6.8-9.EL3.4.ia64.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm 0f2b9fc0f08ab13d28fb5e54dd9a6b83 ruby-libs-1.6.8-9.EL3.4.ia64.rpm fe09a23b04e3f1d4053600822ad65c1d ruby-mode-1.6.8-9.EL3.4.ia64.rpm
ppc: 540f765447867aeb16240818dddf1b51 ruby-1.6.8-9.EL3.4.ppc.rpm f08d897f12918bae3f1d8cc38f14e4ee ruby-devel-1.6.8-9.EL3.4.ppc.rpm dae0f66e644e971277d2132cdfdc28c3 ruby-libs-1.6.8-9.EL3.4.ppc.rpm f755c94dca7e2c8ed13f66d03a4c3345 ruby-libs-1.6.8-9.EL3.4.ppc64.rpm 5b9e451baf30eebd5761c4470fb1b277 ruby-mode-1.6.8-9.EL3.4.ppc.rpm
s390: d45ea42a962ea285094a64e52000a0a4 ruby-1.6.8-9.EL3.4.s390.rpm b7569711aa3de96895c346917f1ccf3e ruby-devel-1.6.8-9.EL3.4.s390.rpm 01b278ca30e712b824b96b02eb2d95db ruby-libs-1.6.8-9.EL3.4.s390.rpm f70a29c86e5c62aab83421756b5235c4 ruby-mode-1.6.8-9.EL3.4.s390.rpm
s390x: 77f0382e404d1afbcaf1ce826c4b75d3 ruby-1.6.8-9.EL3.4.s390x.rpm f0c167caac01aad1f7be8d05c6db633f ruby-devel-1.6.8-9.EL3.4.s390x.rpm 01b278ca30e712b824b96b02eb2d95db ruby-libs-1.6.8-9.EL3.4.s390.rpm 3345a8783bd6541c2a9de6f5c9dbad73 ruby-libs-1.6.8-9.EL3.4.s390x.rpm f826b519e02689f84bb872600acedf71 ruby-mode-1.6.8-9.EL3.4.s390x.rpm
x86_64: 6fb32e9309419767b2a45e9a8c9a6bb6 ruby-1.6.8-9.EL3.4.x86_64.rpm 5fe5a710d3a842c405a1db455e587db7 ruby-devel-1.6.8-9.EL3.4.x86_64.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm ffd6c60b15b2841ba3e82bb268701025 ruby-libs-1.6.8-9.EL3.4.x86_64.rpm cc3cd910a5a5d00984e3914900d5d9af ruby-mode-1.6.8-9.EL3.4.x86_64.rpm
Red Hat Desktop version 3:
SRPMS: ba1c6edb962ce63720a6091435acf2d6 ruby-1.6.8-9.EL3.4.src.rpm
i386: 9cb6433cddfe029966e3678479690491 ruby-1.6.8-9.EL3.4.i386.rpm 7e47defcef53ddfc3d98a89e75c78f81 ruby-devel-1.6.8-9.EL3.4.i386.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm 4030e23dcfa7fe10a5cde734027eb3d6 ruby-mode-1.6.8-9.EL3.4.i386.rpm
x86_64: 6fb32e9309419767b2a45e9a8c9a6bb6 ruby-1.6.8-9.EL3.4.x86_64.rpm 5fe5a710d3a842c405a1db455e587db7 ruby-devel-1.6.8-9.EL3.4.x86_64.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm ffd6c60b15b2841ba3e82bb268701025 ruby-libs-1.6.8-9.EL3.4.x86_64.rpm cc3cd910a5a5d00984e3914900d5d9af ruby-mode-1.6.8-9.EL3.4.x86_64.rpm
Red Hat Enterprise Linux ES version 3:
SRPMS: ba1c6edb962ce63720a6091435acf2d6 ruby-1.6.8-9.EL3.4.src.rpm
i386: 9cb6433cddfe029966e3678479690491 ruby-1.6.8-9.EL3.4.i386.rpm 7e47defcef53ddfc3d98a89e75c78f81 ruby-devel-1.6.8-9.EL3.4.i386.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm 4030e23dcfa7fe10a5cde734027eb3d6 ruby-mode-1.6.8-9.EL3.4.i386.rpm
ia64: 2d01fcb09c2c5227d182b95026eebc3e ruby-1.6.8-9.EL3.4.ia64.rpm 26821bddc91160c309bff6500b2c12f7 ruby-devel-1.6.8-9.EL3.4.ia64.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm 0f2b9fc0f08ab13d28fb5e54dd9a6b83 ruby-libs-1.6.8-9.EL3.4.ia64.rpm fe09a23b04e3f1d4053600822ad65c1d ruby-mode-1.6.8-9.EL3.4.ia64.rpm
x86_64: 6fb32e9309419767b2a45e9a8c9a6bb6 ruby-1.6.8-9.EL3.4.x86_64.rpm 5fe5a710d3a842c405a1db455e587db7 ruby-devel-1.6.8-9.EL3.4.x86_64.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm ffd6c60b15b2841ba3e82bb268701025 ruby-libs-1.6.8-9.EL3.4.x86_64.rpm cc3cd910a5a5d00984e3914900d5d9af ruby-mode-1.6.8-9.EL3.4.x86_64.rpm
Red Hat Enterprise Linux WS version 3:
SRPMS: ba1c6edb962ce63720a6091435acf2d6 ruby-1.6.8-9.EL3.4.src.rpm
i386: 9cb6433cddfe029966e3678479690491 ruby-1.6.8-9.EL3.4.i386.rpm 7e47defcef53ddfc3d98a89e75c78f81 ruby-devel-1.6.8-9.EL3.4.i386.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm 4030e23dcfa7fe10a5cde734027eb3d6 ruby-mode-1.6.8-9.EL3.4.i386.rpm
ia64: 2d01fcb09c2c5227d182b95026eebc3e ruby-1.6.8-9.EL3.4.ia64.rpm 26821bddc91160c309bff6500b2c12f7 ruby-devel-1.6.8-9.EL3.4.ia64.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm 0f2b9fc0f08ab13d28fb5e54dd9a6b83 ruby-libs-1.6.8-9.EL3.4.ia64.rpm fe09a23b04e3f1d4053600822ad65c1d ruby-mode-1.6.8-9.EL3.4.ia64.rpm
x86_64: 6fb32e9309419767b2a45e9a8c9a6bb6 ruby-1.6.8-9.EL3.4.x86_64.rpm 5fe5a710d3a842c405a1db455e587db7 ruby-devel-1.6.8-9.EL3.4.x86_64.rpm 4ffcd05c9a884e8cfbffdad1b06bb005 ruby-libs-1.6.8-9.EL3.4.i386.rpm ffd6c60b15b2841ba3e82bb268701025 ruby-libs-1.6.8-9.EL3.4.x86_64.rpm cc3cd910a5a5d00984e3914900d5d9af ruby-mode-1.6.8-9.EL3.4.x86_64.rpm
Red Hat Enterprise Linux AS version 4:
SRPMS: 673c93e27b38e354b9e8e173937288f7 ruby-1.8.1-7.EL4.2.src.rpm
i386: 6ec9f092ed3094669b1f43e82b4a40df irb-1.8.1-7.EL4.2.i386.rpm b1e9af2d2668ae5989115a2995e834b5 ruby-1.8.1-7.EL4.2.i386.rpm 275d26e3a6e4fc1007717dfffb3cca8b ruby-devel-1.8.1-7.EL4.2.i386.rpm e6db944c8bbd8020a41d23f369a05aeb ruby-docs-1.8.1-7.EL4.2.i386.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm 057d421609b691efe5b0d3203a9cf883 ruby-mode-1.8.1-7.EL4.2.i386.rpm 4003f9d1d5113f0b63fd06c06fb08cc5 ruby-tcltk-1.8.1-7.EL4.2.i386.rpm
ia64: de01d0b901cf17b57f1fc94b8490df0a irb-1.8.1-7.EL4.2.ia64.rpm 192e2eb1b1a55d4016d8bb1a93dfc890 ruby-1.8.1-7.EL4.2.ia64.rpm 4511c863b31c05c74d75996cf50cf4f3 ruby-devel-1.8.1-7.EL4.2.ia64.rpm 4058641b6d1ed4961729ed0085e058f3 ruby-docs-1.8.1-7.EL4.2.ia64.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm a83241a836a7cfd2d474831585c30094 ruby-libs-1.8.1-7.EL4.2.ia64.rpm e940a953cd80194eeb026364e14f071d ruby-mode-1.8.1-7.EL4.2.ia64.rpm 79d757f22b7e55a2fabcd950de1cb849 ruby-tcltk-1.8.1-7.EL4.2.ia64.rpm
ppc: dc5356265e6dc2c07eebc58305125824 irb-1.8.1-7.EL4.2.ppc.rpm fc4faa46e23fbce57e40c587beef1cf2 ruby-1.8.1-7.EL4.2.ppc.rpm 9117843d1ee8d6c2619e3cafda73b93d ruby-devel-1.8.1-7.EL4.2.ppc.rpm 52e5f6cb05686fc7708ec26ad0f83176 ruby-docs-1.8.1-7.EL4.2.ppc.rpm 6fe945b7e0a65661e88999e88740946f ruby-libs-1.8.1-7.EL4.2.ppc.rpm 971b2850d883df6d4c3536cc1eee01ab ruby-libs-1.8.1-7.EL4.2.ppc64.rpm 3f82d9bb7fe0887eba0502324c6a78d1 ruby-mode-1.8.1-7.EL4.2.ppc.rpm 75693ea1a2156d4cb3ec5b08c2b70a98 ruby-tcltk-1.8.1-7.EL4.2.ppc.rpm
s390: 4fe0676d53f3f31aaaae9787b813d594 irb-1.8.1-7.EL4.2.s390.rpm 72bbbc558e22c00cc8c38120574752bb ruby-1.8.1-7.EL4.2.s390.rpm fc2195a2febc1c74e8501c447e2f785f ruby-devel-1.8.1-7.EL4.2.s390.rpm d8073699e13d286bcf8627eef5a4a71e ruby-docs-1.8.1-7.EL4.2.s390.rpm 33f55b11c54e1b6a3ba17df31af1a1ea ruby-libs-1.8.1-7.EL4.2.s390.rpm eee88708e3a173468b77efd0e366dced ruby-mode-1.8.1-7.EL4.2.s390.rpm c55ebaa57529808ab4a9bd6e95f9406c ruby-tcltk-1.8.1-7.EL4.2.s390.rpm
s390x: 6ae043140c8b5b0e9c2227495abf3bd8 irb-1.8.1-7.EL4.2.s390x.rpm 7035c1dc93315c529b80f61370f3d9d8 ruby-1.8.1-7.EL4.2.s390x.rpm eeebcbceeb5e216d7e9cc5fb10dde21f ruby-devel-1.8.1-7.EL4.2.s390x.rpm a3215c6cf80d4ecede32778b8deff2e5 ruby-docs-1.8.1-7.EL4.2.s390x.rpm 33f55b11c54e1b6a3ba17df31af1a1ea ruby-libs-1.8.1-7.EL4.2.s390.rpm b76da181aefba027bf7663d79180784c ruby-libs-1.8.1-7.EL4.2.s390x.rpm 271d78e5468e8d584d51a059510585ab ruby-mode-1.8.1-7.EL4.2.s390x.rpm 50481c061d1de4c90ffea0be0e755df9 ruby-tcltk-1.8.1-7.EL4.2.s390x.rpm
x86_64: d90051ede9a3519dd4829b8e4c4e569f irb-1.8.1-7.EL4.2.x86_64.rpm d1dba9746515b89c13e7a6853325ff88 ruby-1.8.1-7.EL4.2.x86_64.rpm 148ec3cbc5268fe5c3790050131b925a ruby-devel-1.8.1-7.EL4.2.x86_64.rpm 24257acaca983be34ddc3496b46046c7 ruby-docs-1.8.1-7.EL4.2.x86_64.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm 3eede611d89ab5a7a68b07b39f59f31b ruby-libs-1.8.1-7.EL4.2.x86_64.rpm 78da918cd444371a73b0d855c7b01568 ruby-mode-1.8.1-7.EL4.2.x86_64.rpm de1fbccdb90a01c5b00433d44fd594f7 ruby-tcltk-1.8.1-7.EL4.2.x86_64.rpm
Red Hat Enterprise Linux Desktop version 4:
SRPMS: 673c93e27b38e354b9e8e173937288f7 ruby-1.8.1-7.EL4.2.src.rpm
i386: 6ec9f092ed3094669b1f43e82b4a40df irb-1.8.1-7.EL4.2.i386.rpm b1e9af2d2668ae5989115a2995e834b5 ruby-1.8.1-7.EL4.2.i386.rpm 275d26e3a6e4fc1007717dfffb3cca8b ruby-devel-1.8.1-7.EL4.2.i386.rpm e6db944c8bbd8020a41d23f369a05aeb ruby-docs-1.8.1-7.EL4.2.i386.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm 057d421609b691efe5b0d3203a9cf883 ruby-mode-1.8.1-7.EL4.2.i386.rpm 4003f9d1d5113f0b63fd06c06fb08cc5 ruby-tcltk-1.8.1-7.EL4.2.i386.rpm
x86_64: d90051ede9a3519dd4829b8e4c4e569f irb-1.8.1-7.EL4.2.x86_64.rpm d1dba9746515b89c13e7a6853325ff88 ruby-1.8.1-7.EL4.2.x86_64.rpm 148ec3cbc5268fe5c3790050131b925a ruby-devel-1.8.1-7.EL4.2.x86_64.rpm 24257acaca983be34ddc3496b46046c7 ruby-docs-1.8.1-7.EL4.2.x86_64.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm 3eede611d89ab5a7a68b07b39f59f31b ruby-libs-1.8.1-7.EL4.2.x86_64.rpm 78da918cd444371a73b0d855c7b01568 ruby-mode-1.8.1-7.EL4.2.x86_64.rpm de1fbccdb90a01c5b00433d44fd594f7 ruby-tcltk-1.8.1-7.EL4.2.x86_64.rpm
Red Hat Enterprise Linux ES version 4:
SRPMS: 673c93e27b38e354b9e8e173937288f7 ruby-1.8.1-7.EL4.2.src.rpm
i386: 6ec9f092ed3094669b1f43e82b4a40df irb-1.8.1-7.EL4.2.i386.rpm b1e9af2d2668ae5989115a2995e834b5 ruby-1.8.1-7.EL4.2.i386.rpm 275d26e3a6e4fc1007717dfffb3cca8b ruby-devel-1.8.1-7.EL4.2.i386.rpm e6db944c8bbd8020a41d23f369a05aeb ruby-docs-1.8.1-7.EL4.2.i386.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm 057d421609b691efe5b0d3203a9cf883 ruby-mode-1.8.1-7.EL4.2.i386.rpm 4003f9d1d5113f0b63fd06c06fb08cc5 ruby-tcltk-1.8.1-7.EL4.2.i386.rpm
ia64: de01d0b901cf17b57f1fc94b8490df0a irb-1.8.1-7.EL4.2.ia64.rpm 192e2eb1b1a55d4016d8bb1a93dfc890 ruby-1.8.1-7.EL4.2.ia64.rpm 4511c863b31c05c74d75996cf50cf4f3 ruby-devel-1.8.1-7.EL4.2.ia64.rpm 4058641b6d1ed4961729ed0085e058f3 ruby-docs-1.8.1-7.EL4.2.ia64.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm a83241a836a7cfd2d474831585c30094 ruby-libs-1.8.1-7.EL4.2.ia64.rpm e940a953cd80194eeb026364e14f071d ruby-mode-1.8.1-7.EL4.2.ia64.rpm 79d757f22b7e55a2fabcd950de1cb849 ruby-tcltk-1.8.1-7.EL4.2.ia64.rpm
x86_64: d90051ede9a3519dd4829b8e4c4e569f irb-1.8.1-7.EL4.2.x86_64.rpm d1dba9746515b89c13e7a6853325ff88 ruby-1.8.1-7.EL4.2.x86_64.rpm 148ec3cbc5268fe5c3790050131b925a ruby-devel-1.8.1-7.EL4.2.x86_64.rpm 24257acaca983be34ddc3496b46046c7 ruby-docs-1.8.1-7.EL4.2.x86_64.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm 3eede611d89ab5a7a68b07b39f59f31b ruby-libs-1.8.1-7.EL4.2.x86_64.rpm 78da918cd444371a73b0d855c7b01568 ruby-mode-1.8.1-7.EL4.2.x86_64.rpm de1fbccdb90a01c5b00433d44fd594f7 ruby-tcltk-1.8.1-7.EL4.2.x86_64.rpm
Red Hat Enterprise Linux WS version 4:
SRPMS: 673c93e27b38e354b9e8e173937288f7 ruby-1.8.1-7.EL4.2.src.rpm
i386: 6ec9f092ed3094669b1f43e82b4a40df irb-1.8.1-7.EL4.2.i386.rpm b1e9af2d2668ae5989115a2995e834b5 ruby-1.8.1-7.EL4.2.i386.rpm 275d26e3a6e4fc1007717dfffb3cca8b ruby-devel-1.8.1-7.EL4.2.i386.rpm e6db944c8bbd8020a41d23f369a05aeb ruby-docs-1.8.1-7.EL4.2.i386.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm 057d421609b691efe5b0d3203a9cf883 ruby-mode-1.8.1-7.EL4.2.i386.rpm 4003f9d1d5113f0b63fd06c06fb08cc5 ruby-tcltk-1.8.1-7.EL4.2.i386.rpm
ia64: de01d0b901cf17b57f1fc94b8490df0a irb-1.8.1-7.EL4.2.ia64.rpm 192e2eb1b1a55d4016d8bb1a93dfc890 ruby-1.8.1-7.EL4.2.ia64.rpm 4511c863b31c05c74d75996cf50cf4f3 ruby-devel-1.8.1-7.EL4.2.ia64.rpm 4058641b6d1ed4961729ed0085e058f3 ruby-docs-1.8.1-7.EL4.2.ia64.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm a83241a836a7cfd2d474831585c30094 ruby-libs-1.8.1-7.EL4.2.ia64.rpm e940a953cd80194eeb026364e14f071d ruby-mode-1.8.1-7.EL4.2.ia64.rpm 79d757f22b7e55a2fabcd950de1cb849 ruby-tcltk-1.8.1-7.EL4.2.ia64.rpm
x86_64: d90051ede9a3519dd4829b8e4c4e569f irb-1.8.1-7.EL4.2.x86_64.rpm d1dba9746515b89c13e7a6853325ff88 ruby-1.8.1-7.EL4.2.x86_64.rpm 148ec3cbc5268fe5c3790050131b925a ruby-devel-1.8.1-7.EL4.2.x86_64.rpm 24257acaca983be34ddc3496b46046c7 ruby-docs-1.8.1-7.EL4.2.x86_64.rpm f9b40a658fe96d6ba7feda919c60ab5f ruby-libs-1.8.1-7.EL4.2.i386.rpm 3eede611d89ab5a7a68b07b39f59f31b ruby-libs-1.8.1-7.EL4.2.x86_64.rpm 78da918cd444371a73b0d855c7b01568 ruby-mode-1.8.1-7.EL4.2.x86_64.rpm de1fbccdb90a01c5b00433d44fd594f7 ruby-tcltk-1.8.1-7.EL4.2.x86_64.rpm
These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://www.redhat.com/security/team/key/#package

References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2005-2337

Package List


Severity
Advisory ID: RHSA-2005:799-01
Advisory URL: https://access.redhat.com/errata/RHSA-2005:799.html
Issued Date: : 2005-10-11
Updated on: 2005-10-11
Product: Red Hat Enterprise Linux
CVE Names: CAN-2005-2337 Updated ruby packages that fix an arbitrary command execution issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team.

Topic


Topic


 

Relevant Releases Architectures

Red Hat Enterprise Linux AS (Advanced Server) version 2.1 - i386

Red Hat Linux Advanced Workstation 2.1 -

Red Hat Enterprise Linux ES version 2.1 - i386

Red Hat Enterprise Linux WS version 2.1 - i386

Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, s390, s390x, x86_64

Red Hat Desktop version 3 - i386, x86_64

Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64

Red Hat Enterprise Linux AS version 4 - i386, ia64, ppc, s390, s390x, x86_64

Red Hat Enterprise Linux Desktop version 4 - i386, x86_64

Red Hat Enterprise Linux ES version 4 - i386, ia64, x86_64

Red Hat Enterprise Linux WS version 4 - i386, ia64, x86_64


Bugs Fixed


Related News

28.Lock Globe Esm H320
1 - 2 min read
A resurgence of cyberattacks targeting Linux systems in Asian campaigns through the utilization of the Pupy Remote Access Trojan (RAT) has been
27.Tablet Connections Blocks Lock Esm H320
2 - 4 min read
Canonical has recently announced the Beta release of Ubuntu Linux 24.04 LTS , codenamed "Noble Numbat." This release aims to continue Ubuntu's
21.Globe RadiatingCode Esm H320
2 - 3 min read
The open-source movement has come a long way, from its origins in the 1960s and 1970s to becoming an integral part of organizations worldwide.
13.Lock StylizedMotherboard Esm H320
2 - 3 min read
The Rust-based Edera project demonstrates a unique approach to container security that addresses cloud-native computing challenges. Let's examine
8.Locks HexConnections CodeGlobe Esm H320
2 - 3 min read
Canonical has launched Ubuntu Pro for Devices , a comprehensive offering emphasizing security and compliance for IoT device deployments. This
2.Motherboard Esm H320
2 - 3 min read
The recently uncovered "Native Branch History Injection (BHI)" exploit against the Linux kernel marks a significant milestone in the ongoing battle
1.Penguin Landscape Esm H320
1 - 2 min read
There are compelling arguments in favor of Linux over Windows for desktop usage. Let's explore some advantages of choosing Linux over Windows for
4.Lock AbstractDigital Esm H320
2 - 3 min read
Canonical , the company behind Ubuntu , has introduced Netplan 1.0 , a network configuration tool that simplifies networking configuration on Linux

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved