Vulnerability Database
Blog
FAQ
Docs
RHSA-2018:0583
See a problem?
Please try reporting it
to the source
first.
Source
https://access.redhat.com/errata/RHSA-2018:0583
Import Source
https://security.access.redhat.com/data/osv/RHSA-2018:0583.json
JSON Data
https://api.osv.dev/v1/vulns/RHSA-2018:0583
Related
CVE-2009-5147
CVE-2015-7551
CVE-2017-0898
CVE-2017-0899
CVE-2017-0900
CVE-2017-0901
CVE-2017-0902
CVE-2017-0903
CVE-2017-10784
CVE-2017-14033
CVE-2017-14064
CVE-2017-17405
CVE-2017-17790
Published
2024-09-13T14:43:49Z
Modified
2024-09-13T14:43:49Z
Severity
8.1 (High)
CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS Calculator
Summary
Red Hat Security Advisory: rh-ruby22-ruby security, bug fix, and enhancement update
Details
References
https://access.redhat.com/errata/RHSA-2018:0583
https://access.redhat.com/security/updates/classification/#important
https://bugzilla.redhat.com/show_bug.cgi?id=1248935
https://bugzilla.redhat.com/show_bug.cgi?id=1487552
https://bugzilla.redhat.com/show_bug.cgi?id=1487587
https://bugzilla.redhat.com/show_bug.cgi?id=1487588
https://bugzilla.redhat.com/show_bug.cgi?id=1487589
https://bugzilla.redhat.com/show_bug.cgi?id=1487590
https://bugzilla.redhat.com/show_bug.cgi?id=1491866
https://bugzilla.redhat.com/show_bug.cgi?id=1492012
https://bugzilla.redhat.com/show_bug.cgi?id=1492015
https://bugzilla.redhat.com/show_bug.cgi?id=1500488
https://bugzilla.redhat.com/show_bug.cgi?id=1526189
https://bugzilla.redhat.com/show_bug.cgi?id=1528218
https://bugzilla.redhat.com/show_bug.cgi?id=1549646
https://access.redhat.com/security/data/csaf/v2/advisories/2018/rhsa-2018_0583.json
https://access.redhat.com/security/cve/CVE-2009-5147
https://www.cve.org/CVERecord?id=CVE-2009-5147
https://nvd.nist.gov/vuln/detail/CVE-2009-5147
https://access.redhat.com/security/cve/CVE-2015-7551
https://www.cve.org/CVERecord?id=CVE-2015-7551
https://nvd.nist.gov/vuln/detail/CVE-2015-7551
https://access.redhat.com/security/cve/CVE-2017-0898
https://www.cve.org/CVERecord?id=CVE-2017-0898
https://nvd.nist.gov/vuln/detail/CVE-2017-0898
https://www.ruby-lang.org/en/news/2017/09/14/sprintf-buffer-underrun-cve-2017-0898/
https://access.redhat.com/security/cve/CVE-2017-0899
https://www.cve.org/CVERecord?id=CVE-2017-0899
https://nvd.nist.gov/vuln/detail/CVE-2017-0899
http://blog.rubygems.org/2017/08/27/2.6.13-released.html
https://access.redhat.com/security/cve/CVE-2017-0900
https://www.cve.org/CVERecord?id=CVE-2017-0900
https://nvd.nist.gov/vuln/detail/CVE-2017-0900
https://access.redhat.com/security/cve/CVE-2017-0901
https://www.cve.org/CVERecord?id=CVE-2017-0901
https://nvd.nist.gov/vuln/detail/CVE-2017-0901
https://access.redhat.com/security/cve/CVE-2017-0902
https://www.cve.org/CVERecord?id=CVE-2017-0902
https://nvd.nist.gov/vuln/detail/CVE-2017-0902
https://access.redhat.com/security/cve/CVE-2017-0903
https://www.cve.org/CVERecord?id=CVE-2017-0903
https://nvd.nist.gov/vuln/detail/CVE-2017-0903
http://blog.rubygems.org/2017/10/09/2.6.14-released.html
https://access.redhat.com/security/cve/CVE-2017-10784
https://www.cve.org/CVERecord?id=CVE-2017-10784
https://nvd.nist.gov/vuln/detail/CVE-2017-10784
https://www.ruby-lang.org/en/news/2017/09/14/webrick-basic-auth-escape-sequence-injection-cve-2017-10784/
https://access.redhat.com/security/cve/CVE-2017-14033
https://www.cve.org/CVERecord?id=CVE-2017-14033
https://nvd.nist.gov/vuln/detail/CVE-2017-14033
https://www.ruby-lang.org/en/news/2017/09/14/openssl-asn1-buffer-underrun-cve-2017-14033/
https://access.redhat.com/security/cve/CVE-2017-14064
https://www.cve.org/CVERecord?id=CVE-2017-14064
https://nvd.nist.gov/vuln/detail/CVE-2017-14064
https://www.ruby-lang.org/en/news/2017/09/14/json-heap-exposure-cve-2017-14064/
https://access.redhat.com/security/cve/CVE-2017-17405
https://www.cve.org/CVERecord?id=CVE-2017-17405
https://nvd.nist.gov/vuln/detail/CVE-2017-17405
https://www.ruby-lang.org/en/news/2017/12/14/net-ftp-command-injection-cve-2017-17405/
https://access.redhat.com/security/cve/CVE-2017-17790
https://www.cve.org/CVERecord?id=CVE-2017-17790
https://nvd.nist.gov/vuln/detail/CVE-2017-17790
Affected packages
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-ruby
Package
Name
rh-ruby22-ruby
Purl
pkg:rpm/redhat/rh-ruby22-ruby
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-ruby-debuginfo
Package
Name
rh-ruby22-ruby-debuginfo
Purl
pkg:rpm/redhat/rh-ruby22-ruby-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-ruby-devel
Package
Name
rh-ruby22-ruby-devel
Purl
pkg:rpm/redhat/rh-ruby22-ruby-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-ruby-doc
Package
Name
rh-ruby22-ruby-doc
Purl
pkg:rpm/redhat/rh-ruby22-ruby-doc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-ruby-irb
Package
Name
rh-ruby22-ruby-irb
Purl
pkg:rpm/redhat/rh-ruby22-ruby-irb
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-ruby-libs
Package
Name
rh-ruby22-ruby-libs
Purl
pkg:rpm/redhat/rh-ruby22-ruby-libs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-ruby-tcltk
Package
Name
rh-ruby22-ruby-tcltk
Purl
pkg:rpm/redhat/rh-ruby22-ruby-tcltk
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygem-bigdecimal
Package
Name
rh-ruby22-rubygem-bigdecimal
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-bigdecimal
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.2.6-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygem-io-console
Package
Name
rh-ruby22-rubygem-io-console
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-io-console
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.4.3-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygem-json
Package
Name
rh-ruby22-rubygem-json
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-json
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.8.1.1-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygem-minitest
Package
Name
rh-ruby22-rubygem-minitest
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-minitest
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:5.4.3-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygem-power_assert
Package
Name
rh-ruby22-rubygem-power_assert
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-power_assert
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.2.2-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygem-psych
Package
Name
rh-ruby22-rubygem-psych
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-psych
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.0.8.1-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygem-rake
Package
Name
rh-ruby22-rubygem-rake
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-rake
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:10.4.2-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygem-rdoc
Package
Name
rh-ruby22-rubygem-rdoc
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-rdoc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.2.0-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygem-test-unit
Package
Name
rh-ruby22-rubygem-test-unit
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-test-unit
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.0.8-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygems
Package
Name
rh-ruby22-rubygems
Purl
pkg:rpm/redhat/rh-ruby22-rubygems
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.5.4-19.el6
Red Hat:rhel_software_collections:3::el6
/
rh-ruby22-rubygems-devel
Package
Name
rh-ruby22-rubygems-devel
Purl
pkg:rpm/redhat/rh-ruby22-rubygems-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.5.4-19.el6
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-ruby
Package
Name
rh-ruby22-ruby
Purl
pkg:rpm/redhat/rh-ruby22-ruby
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-ruby-debuginfo
Package
Name
rh-ruby22-ruby-debuginfo
Purl
pkg:rpm/redhat/rh-ruby22-ruby-debuginfo
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-ruby-devel
Package
Name
rh-ruby22-ruby-devel
Purl
pkg:rpm/redhat/rh-ruby22-ruby-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-ruby-doc
Package
Name
rh-ruby22-ruby-doc
Purl
pkg:rpm/redhat/rh-ruby22-ruby-doc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-ruby-irb
Package
Name
rh-ruby22-ruby-irb
Purl
pkg:rpm/redhat/rh-ruby22-ruby-irb
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-ruby-libs
Package
Name
rh-ruby22-ruby-libs
Purl
pkg:rpm/redhat/rh-ruby22-ruby-libs
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-ruby-tcltk
Package
Name
rh-ruby22-ruby-tcltk
Purl
pkg:rpm/redhat/rh-ruby22-ruby-tcltk
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.2.9-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygem-bigdecimal
Package
Name
rh-ruby22-rubygem-bigdecimal
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-bigdecimal
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.2.6-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygem-io-console
Package
Name
rh-ruby22-rubygem-io-console
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-io-console
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.4.3-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygem-json
Package
Name
rh-ruby22-rubygem-json
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-json
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:1.8.1.1-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygem-minitest
Package
Name
rh-ruby22-rubygem-minitest
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-minitest
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:5.4.3-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygem-power_assert
Package
Name
rh-ruby22-rubygem-power_assert
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-power_assert
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:0.2.2-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygem-psych
Package
Name
rh-ruby22-rubygem-psych
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-psych
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.0.8.1-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygem-rake
Package
Name
rh-ruby22-rubygem-rake
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-rake
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:10.4.2-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygem-rdoc
Package
Name
rh-ruby22-rubygem-rdoc
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-rdoc
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:4.2.0-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygem-test-unit
Package
Name
rh-ruby22-rubygem-test-unit
Purl
pkg:rpm/redhat/rh-ruby22-rubygem-test-unit
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:3.0.8-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygems
Package
Name
rh-ruby22-rubygems
Purl
pkg:rpm/redhat/rh-ruby22-rubygems
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.5.4-19.el7
Red Hat:rhel_software_collections:3::el7
/
rh-ruby22-rubygems-devel
Package
Name
rh-ruby22-rubygems-devel
Purl
pkg:rpm/redhat/rh-ruby22-rubygems-devel
Affected ranges
Type
ECOSYSTEM
Events
Introduced
0
Unknown introduced version / All previous versions are affected
Fixed
0:2.4.5.4-19.el7
RHSA-2018:0583 - OSV