MGASA-2015-0178
- Source
- https://advisories.mageia.org/MGASA-2015-0178.html
- Import Source
- https://advisories.mageia.org/MGASA-2015-0178.json
- JSON Data
- https://api.osv.dev/v1/vulns/MGASA-2015-0178
- Upstream
- Published
- 2015-05-03T00:19:16Z
- Modified
- 2026-04-16T06:23:03.642504907Z
- Summary
- Updated ruby packages fix CVE-2015-1855
- Details
-
Updated ruby packages fix security vulnerability:
Ruby OpenSSL hostname matching implementation violates RFC 6125 (CVE-2015-1855).
The ruby package has been updated to version 2.0.0-p645, which fixes this issue.
- References
-
- https://advisories.mageia.org/MGASA-2015-0178.html
- https://bugs.mageia.org/show_bug.cgi?id=15699
- https://www.ruby-lang.org/en/news/2015/04/13/ruby-openssl-hostname-matching-vulnerability/
- https://www.ruby-lang.org/en/news/2015/04/13/ruby-2-0-0-p645-released/
- https://lists.fedoraproject.org/pipermail/package-announce/2015-April/156431.html
- Credits
-
-
- Mageia - COORDINATOR
-
Affected packages
Mageia:4 / ruby
Package
- Name
- ruby
- Purl
- pkg:rpm/mageia/ruby?arch=source&distro=mageia-4