Skip to navigation

Security Advisory Moderate: ruby security and bug fix update

Advisory: RHSA-2013:0129-1
Type: Security Advisory
Severity: Moderate
Issued on: 2013-01-08
Last updated on: 2013-01-08
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux Desktop (v. 5 client)
CVEs (cve.mitre.org): CVE-2012-4481
CVE-2012-4522

Details

Updated ruby packages that fix two security issues and one bug are now
available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having moderate
security impact. Common Vulnerability Scoring System (CVSS) base scores,
which give detailed severity ratings, are available for each vulnerability
from the CVE links in the References section.

Ruby is an extensible, interpreted, object-oriented, scripting language. It
has features to process text files and to do system management tasks.

It was found that certain methods did not sanitize file names before
passing them to lower layer routines in Ruby. If a Ruby application created
files with names based on untrusted input, it could result in the creation
of files with different names than expected. (CVE-2012-4522)

It was found that the RHSA-2011:0909 update did not correctly fix the
CVE-2011-1005 issue, a flaw in the method for translating an exception
message into a string in the Exception class. A remote attacker could use
this flaw to bypass safe level 4 restrictions, allowing untrusted (tainted)
code to modify arbitrary, trusted (untainted) strings, which safe level 4
restrictions would otherwise prevent. (CVE-2012-4481)

The CVE-2012-4481 issue was discovered by Vit Ondruch of Red Hat.

This update also fixes the following bug:

* Prior to this update, the "rb_syck_mktime" option could, under certain
circumstances, terminate with a segmentation fault when installing
libraries with certain gems. This update modifies the underlying code so
that Ruby gems can be installed as expected. (BZ#834381)

All users of Ruby are advised to upgrade to these updated packages, which
contain backported patches to resolve these issues.


Solution

Before applying this update, make sure all previously-released errata
relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to
use the Red Hat Network to apply this update are available at
https://access.redhat.com/knowledge/articles/11258

Updated packages

RHEL Desktop Workstation (v. 5 client)

SRPMS:
ruby-1.8.5-27.el5.src.rpm
File outdated by:  RHSA-2013:1090
    MD5: cf0db4319213489655608a7840dc4194
SHA-256: 5c225686c726137b553aa4825df07f432426a6727bdd60eaee52ae669f73c016
 
IA-32:
ruby-debuginfo-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6d917cb295dc7c9d066ee25fef82b6f4
SHA-256: d72972b3aac05986cfa0e3c33f1703399e2f3e73bf6d3c8e47028edf71424d27
ruby-devel-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: baab96343d742170df128620608bfaf0
SHA-256: e8ba94ec476a3acce0a7b5c040ee16a0650060df90bb52e2600859455df23ed0
ruby-mode-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: db82168394ed43319e0c2b8a447550d9
SHA-256: e19469e29b1f17ef428d2d83ae4ae1aaa4082ae6f58a3ef56b8a334da8adf609
 
x86_64:
ruby-debuginfo-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6d917cb295dc7c9d066ee25fef82b6f4
SHA-256: d72972b3aac05986cfa0e3c33f1703399e2f3e73bf6d3c8e47028edf71424d27
ruby-debuginfo-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: d6ab6fd9294c9d8bdd85e671f4420888
SHA-256: 7852750779eb1847f1d912ce0c86b0498973aa91d8353551a475fc209b2ac6ec
ruby-devel-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: baab96343d742170df128620608bfaf0
SHA-256: e8ba94ec476a3acce0a7b5c040ee16a0650060df90bb52e2600859455df23ed0
ruby-devel-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 5b9e7b77bc017ecdd6800bfae2a76084
SHA-256: 71095fe46e30ab5cd41c722ea86b654075b2efccc6d4e49755fee4d59fbe0e2b
ruby-mode-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 1d9deb256d15a2630ee8f767ed6194bd
SHA-256: 371231e1b93e6c606a25a3041f10004732d9850e469a63c631659bfe4fcc8f6f
 
Red Hat Enterprise Linux (v. 5 server)

SRPMS:
ruby-1.8.5-27.el5.src.rpm
File outdated by:  RHSA-2013:1090
    MD5: cf0db4319213489655608a7840dc4194
SHA-256: 5c225686c726137b553aa4825df07f432426a6727bdd60eaee52ae669f73c016
 
IA-32:
ruby-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 18686c6c06c4e360ed4aa698ec004a8a
SHA-256: 24bd882c824f078f9b0ec7db2065c1d681997fc1bb05cfc8d14ddab94e101ebe
ruby-debuginfo-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6d917cb295dc7c9d066ee25fef82b6f4
SHA-256: d72972b3aac05986cfa0e3c33f1703399e2f3e73bf6d3c8e47028edf71424d27
ruby-devel-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: baab96343d742170df128620608bfaf0
SHA-256: e8ba94ec476a3acce0a7b5c040ee16a0650060df90bb52e2600859455df23ed0
ruby-docs-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 284c7dea7b7a583b6551e7d17d1e9331
SHA-256: 6a76d880bc819e3259c5525717556c2d1ae83946be3b9d86e43ecc767eebdfd1
ruby-irb-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 425d4bb2b5969e115503b128f2959924
SHA-256: abc86cd7debc85b18e4625c678655a4d4d55249e8d4027cc0b73190a67d4e841
ruby-libs-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6944215021019993721be0d351b06ab9
SHA-256: 9b2d6a2d75b81766eceb153dcee733d9efd48e571bbdca9ba58b76cf7421be13
ruby-mode-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: db82168394ed43319e0c2b8a447550d9
SHA-256: e19469e29b1f17ef428d2d83ae4ae1aaa4082ae6f58a3ef56b8a334da8adf609
ruby-rdoc-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 8cc4f91f1d74f9daede3f991a9806715
SHA-256: 6f7f76fe76055bc54264be67107bd4af9161dab480bec1dc7237f18ba733a934
ruby-ri-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 5ca9a022671e03fdadb44454d30cc681
SHA-256: 8dcd1e0a00894c4607c0b24aad1003cdf22e6095bec2d56b793c54e55e1938e2
ruby-tcltk-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 45ab8d5a4c06b5e465e2f474a4a0ac87
SHA-256: 1ecaaebd500ef308f212134b2acc74544a1898b737ea584513597b3ebd7d06e7
 
IA-64:
ruby-1.8.5-27.el5.ia64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 23be44d1c7eb2c0441251f76d7e8cfe5
SHA-256: 39f99085f735eddd738b6b5441274ea6d238df9b812fce768f013f79bd643918
ruby-debuginfo-1.8.5-27.el5.ia64.rpm
File outdated by:  RHSA-2013:1090
    MD5: a4d6ef7e81ec610da11fd1da35a891f7
SHA-256: ed20d5f2b53c7e4068e897899be28a22854d67c96086651c3497f5b08e732b01
ruby-devel-1.8.5-27.el5.ia64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 90eed58047575487e394024c682eaf42
SHA-256: ced25cc177b421c1d0eba6a5f9ad49c1c1173087c12b432a85c00359931dd587
ruby-docs-1.8.5-27.el5.ia64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 113263bc44a8f86b9400a0faad0ec876
SHA-256: c6df78885833696417ff822bf64e659e57469d4f6728bdba02c3edd31c9c09f6
ruby-irb-1.8.5-27.el5.ia64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 8cccb52dd1636b16ea9c228f43bc63a5
SHA-256: b249754b78901b82567c3c4bc5fe69078a448f21b718f00d78613d13a083d775
ruby-libs-1.8.5-27.el5.ia64.rpm
File outdated by:  RHSA-2013:1090
    MD5: e0c3c9608d0f97d0e16657dd57128d42
SHA-256: cf710bc9862fe511ded1f2f1f7edcee9701819add44227c50509487330bf31f1
ruby-mode-1.8.5-27.el5.ia64.rpm
File outdated by:  RHSA-2013:1090
    MD5: a4213a6282d082ff262f9c178fc96e74
SHA-256: 9441d6931f7b3037f1b47eb2201f93d5061bea9d11449dc502b0f0726b205711
ruby-rdoc-1.8.5-27.el5.ia64.rpm
File outdated by:  RHSA-2013:1090
    MD5: cc65667d1d313ebbc4e6e46461271cde
SHA-256: 7f3ef5059f06a11f6c3ecbe3912016121fc85dc68c2eb39df4c7f2e926ba3d36
ruby-ri-1.8.5-27.el5.ia64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 7ed57a8e839c37cff456ddc81e185277
SHA-256: 049134d79a7df54e279cde190315556843b5c514eaf0538fbcaaf0bb7aa6a4c6
ruby-tcltk-1.8.5-27.el5.ia64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 3cd2d6dc8771b24fcf0bd25a84caaea8
SHA-256: 5fd888f1598637f1bcfb315b4e5b61b6b0ca9b3f28d1733f142a4def394e2167
 
PPC:
ruby-1.8.5-27.el5.ppc.rpm
File outdated by:  RHSA-2013:1090
    MD5: 5d3a9742d2fc93387a39b5632df575c3
SHA-256: ee9737f4b4d416f84d737d07a40c85b5e9e22b8bb8261db0e5c7cd5d0c65c26a
ruby-debuginfo-1.8.5-27.el5.ppc.rpm
File outdated by:  RHSA-2013:1090
    MD5: 300124e0cd2e245a601e6b7e104541a3
SHA-256: eef2d6cc63921030599c96abcc92e4588267307e8234e2965f5a5925445c44e0
ruby-debuginfo-1.8.5-27.el5.ppc64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6a9c10ba8807d010e58416b47c6f092f
SHA-256: daf7c59e068e9e7a4b1c127f9e370c8ecbb16eb20309efffad183cb4025b63af
ruby-devel-1.8.5-27.el5.ppc.rpm
File outdated by:  RHSA-2013:1090
    MD5: 2592f2f1973993e88f85f912deda358b
SHA-256: ddecd955e4c06208843cfd92a48d56fb9e839f5896571fe8d7b966ac13b8a50e
ruby-devel-1.8.5-27.el5.ppc64.rpm
File outdated by:  RHSA-2013:1090
    MD5: a950c2cc13aaf2f2aeedd324494ebb42
SHA-256: 45c169b0d3e0d81a9066e1c8ce0107e2c979f56c898621a6f4f08575c4a60ade
ruby-docs-1.8.5-27.el5.ppc.rpm
File outdated by:  RHSA-2013:1090
    MD5: dc8a8746055de4aa87fcca6df8e394e7
SHA-256: 487d12bf385f5f34f22535e64c92bc19bbd864b440541833f4e23b534c7bfdd5
ruby-irb-1.8.5-27.el5.ppc.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6cdc8910115d2949e12da1d59dddb10c
SHA-256: 2922dbdc0632ea7920792d30704f2af04437f28cd82f574391badd5037b8ddc9
ruby-libs-1.8.5-27.el5.ppc.rpm
File outdated by:  RHSA-2013:1090
    MD5: c2fff9ac97ed2b11ed276b760c4aa33b
SHA-256: 6648095388180c9887e45780dd196c6a5a653ee5c765f6d17a80f56ca4180bd2
ruby-libs-1.8.5-27.el5.ppc64.rpm
File outdated by:  RHSA-2013:1090
    MD5: eeb4bc936d83fe82fa8ac41ee010eef9
SHA-256: 88bc103e6a7e7f17f924253308f86818fc59fba095a8b47b0841edae4fbe2697
ruby-mode-1.8.5-27.el5.ppc.rpm
File outdated by:  RHSA-2013:1090
    MD5: 9f248c269a9ef651258298497b3af7af
SHA-256: 73be914124f50ada0cf0f45a41252c437202b3168456b27980396abc8c96af1a
ruby-rdoc-1.8.5-27.el5.ppc.rpm
File outdated by:  RHSA-2013:1090
    MD5: cf07d48c1dacf5ba09ca338a1db36c0a
SHA-256: 9a8a545df3398d485ff54b93e167e58c17f9517d35c677a88ae76c6f2edeaa78
ruby-ri-1.8.5-27.el5.ppc.rpm
File outdated by:  RHSA-2013:1090
    MD5: 08cccad8f5918e421147f064329311da
SHA-256: 38e6bbbe74ad891a1b989b2f244659c445690657fd631fb19cf05c4e0d4056f0
ruby-tcltk-1.8.5-27.el5.ppc.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6e929236d011545e3edb7ed2251bd67e
SHA-256: 54edf14c5b05fae69110789be0b23d6e936610e57247e7350565eb0e7a99f653
 
s390x:
ruby-1.8.5-27.el5.s390x.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6eca35e71a2cfbc73d07cf3b665bf0bf
SHA-256: 0161d4c09bfeb0cc9b63f96db3c9a9a282bce83c91f24c34dc4369b8b8fc50cd
ruby-debuginfo-1.8.5-27.el5.s390.rpm
File outdated by:  RHSA-2013:1090
    MD5: ee766ba0b431783bfcaef800ef8e5ae1
SHA-256: 44c816b814fa35889954212b3e4f5c5f80a92a8a5bab9cfa103e3677e2133998
ruby-debuginfo-1.8.5-27.el5.s390x.rpm
File outdated by:  RHSA-2013:1090
    MD5: 70a5c0731e0ecd0ca3035397d21d1cea
SHA-256: 7fccd83bf6e5f861132dbf6d8286de83368095f155421dc3d50ffac8f7425415
ruby-devel-1.8.5-27.el5.s390.rpm
File outdated by:  RHSA-2013:1090
    MD5: 2ad1e27400cacc55d4e62e06e1a5dece
SHA-256: cdcd1923263de4b5f8b83fbab578e901a8d5c8261eb5d6e952535f28e2f004a2
ruby-devel-1.8.5-27.el5.s390x.rpm
File outdated by:  RHSA-2013:1090
    MD5: e1ce6c821972b8be24fab744f3f2a746
SHA-256: 699fa3cc9e3ebc25d7721f3a41521e5d9a63b31e9ba1f2538b217fba1598c04e
ruby-docs-1.8.5-27.el5.s390x.rpm
File outdated by:  RHSA-2013:1090
    MD5: 3155e229bb194d0281b9fc99ead6937f
SHA-256: 66ea3cd9e8fa1af164cda3770a16948e8ef3331eb8471959e2e6fca008949b15
ruby-irb-1.8.5-27.el5.s390x.rpm
File outdated by:  RHSA-2013:1090
    MD5: 87c4bb4d1f12268b96356b2e00442ff9
SHA-256: f0045e7ec4d4fde58b023911094a7e3264c24b7b918903971159d387557a1eb6
ruby-libs-1.8.5-27.el5.s390.rpm
File outdated by:  RHSA-2013:1090
    MD5: a3b36e7730d0b716de41180784ec47ab
SHA-256: 3d5b667b92a07661f0dc5eb3b2a8240939c5e836ca46a612b930e91948398275
ruby-libs-1.8.5-27.el5.s390x.rpm
File outdated by:  RHSA-2013:1090
    MD5: adc65ae3701e255abcda1c43e5e09c46
SHA-256: 46b93d291a615db06de9fa5b288712f49dd500a21513cf31763ed7aa178ce3f1
ruby-mode-1.8.5-27.el5.s390x.rpm
File outdated by:  RHSA-2013:1090
    MD5: 71098c1921f1f44f40efa58e18db68c0
SHA-256: 9ab0f194b48ce9a731c2380ca2ed19b547b111724599d759deeb69c6d8e18fb0
ruby-rdoc-1.8.5-27.el5.s390x.rpm
File outdated by:  RHSA-2013:1090
    MD5: 9c65b787eb290797ebaaf61832823fcf
SHA-256: 746c639acaaf7f8ad86d513ebc924c0db18f9140f2c47537beb78588392b4694
ruby-ri-1.8.5-27.el5.s390x.rpm
File outdated by:  RHSA-2013:1090
    MD5: 5a9d857eb26f54247c6449adb65ef876
SHA-256: 683f9f7f7656a3914cdc4aeaa3ed24c0d2f4653f4a0764d8df8fd0a5a7756d0a
ruby-tcltk-1.8.5-27.el5.s390x.rpm
File outdated by:  RHSA-2013:1090
    MD5: f052ec1bc7a0b6cd24cf244548e601f0
SHA-256: ff664f176cd9fe3599c6cf281a2eb5223bc4aa37e93d4e2f1766a1a5503ba9f0
 
x86_64:
ruby-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: fda672b3519e515b497e223b281b461b
SHA-256: 52272f8cd7f56e80c83486c05d4bc0234d1c7f6995a562d01b8eed441b9d389c
ruby-debuginfo-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6d917cb295dc7c9d066ee25fef82b6f4
SHA-256: d72972b3aac05986cfa0e3c33f1703399e2f3e73bf6d3c8e47028edf71424d27
ruby-debuginfo-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: d6ab6fd9294c9d8bdd85e671f4420888
SHA-256: 7852750779eb1847f1d912ce0c86b0498973aa91d8353551a475fc209b2ac6ec
ruby-devel-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: baab96343d742170df128620608bfaf0
SHA-256: e8ba94ec476a3acce0a7b5c040ee16a0650060df90bb52e2600859455df23ed0
ruby-devel-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 5b9e7b77bc017ecdd6800bfae2a76084
SHA-256: 71095fe46e30ab5cd41c722ea86b654075b2efccc6d4e49755fee4d59fbe0e2b
ruby-docs-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 212d872256f78efef8436e2037c1f1e0
SHA-256: 7dbb7500b4c3d20afadb283a6ea8dfa3eb7890648b385b5c7f3260fc3ffbb5bc
ruby-irb-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: aec03898f6ac26da47d76c83ca28ff10
SHA-256: 9c5ff7b0de3f98df74c6f883761ccdb78da8bd235ff1af04ca2887e4886f4599
ruby-libs-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6944215021019993721be0d351b06ab9
SHA-256: 9b2d6a2d75b81766eceb153dcee733d9efd48e571bbdca9ba58b76cf7421be13
ruby-libs-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 8f7aa82e5fbfec0e7f7face78d98129a
SHA-256: cebc8c586fd285a120df6b897c13398f4736dbfb33f323b5218874e98e853216
ruby-mode-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 1d9deb256d15a2630ee8f767ed6194bd
SHA-256: 371231e1b93e6c606a25a3041f10004732d9850e469a63c631659bfe4fcc8f6f
ruby-rdoc-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: d38590c278c0add3ab0086081c586917
SHA-256: 2d8e2325cc314513521dfe028d34b33864af5b65628514195570e04de6fd8681
ruby-ri-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 4b7f208c06942ab66c82b102ba3fc243
SHA-256: dd37c347377dc607dd15adf802ac55a4ae2af41253035e46cb377dade377534d
ruby-tcltk-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: d2b698349fb3b7405b8c3f30cb0f94a7
SHA-256: d812a31f214f98457d2fe7466415dfdc04c0534cc5b286661c02ca5a1effe41c
 
Red Hat Enterprise Linux Desktop (v. 5 client)

SRPMS:
ruby-1.8.5-27.el5.src.rpm
File outdated by:  RHSA-2013:1090
    MD5: cf0db4319213489655608a7840dc4194
SHA-256: 5c225686c726137b553aa4825df07f432426a6727bdd60eaee52ae669f73c016
 
IA-32:
ruby-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 18686c6c06c4e360ed4aa698ec004a8a
SHA-256: 24bd882c824f078f9b0ec7db2065c1d681997fc1bb05cfc8d14ddab94e101ebe
ruby-debuginfo-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6d917cb295dc7c9d066ee25fef82b6f4
SHA-256: d72972b3aac05986cfa0e3c33f1703399e2f3e73bf6d3c8e47028edf71424d27
ruby-docs-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 284c7dea7b7a583b6551e7d17d1e9331
SHA-256: 6a76d880bc819e3259c5525717556c2d1ae83946be3b9d86e43ecc767eebdfd1
ruby-irb-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 425d4bb2b5969e115503b128f2959924
SHA-256: abc86cd7debc85b18e4625c678655a4d4d55249e8d4027cc0b73190a67d4e841
ruby-libs-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6944215021019993721be0d351b06ab9
SHA-256: 9b2d6a2d75b81766eceb153dcee733d9efd48e571bbdca9ba58b76cf7421be13
ruby-rdoc-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 8cc4f91f1d74f9daede3f991a9806715
SHA-256: 6f7f76fe76055bc54264be67107bd4af9161dab480bec1dc7237f18ba733a934
ruby-ri-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 5ca9a022671e03fdadb44454d30cc681
SHA-256: 8dcd1e0a00894c4607c0b24aad1003cdf22e6095bec2d56b793c54e55e1938e2
ruby-tcltk-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 45ab8d5a4c06b5e465e2f474a4a0ac87
SHA-256: 1ecaaebd500ef308f212134b2acc74544a1898b737ea584513597b3ebd7d06e7
 
x86_64:
ruby-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: fda672b3519e515b497e223b281b461b
SHA-256: 52272f8cd7f56e80c83486c05d4bc0234d1c7f6995a562d01b8eed441b9d389c
ruby-debuginfo-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6d917cb295dc7c9d066ee25fef82b6f4
SHA-256: d72972b3aac05986cfa0e3c33f1703399e2f3e73bf6d3c8e47028edf71424d27
ruby-debuginfo-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: d6ab6fd9294c9d8bdd85e671f4420888
SHA-256: 7852750779eb1847f1d912ce0c86b0498973aa91d8353551a475fc209b2ac6ec
ruby-docs-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 212d872256f78efef8436e2037c1f1e0
SHA-256: 7dbb7500b4c3d20afadb283a6ea8dfa3eb7890648b385b5c7f3260fc3ffbb5bc
ruby-irb-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: aec03898f6ac26da47d76c83ca28ff10
SHA-256: 9c5ff7b0de3f98df74c6f883761ccdb78da8bd235ff1af04ca2887e4886f4599
ruby-libs-1.8.5-27.el5.i386.rpm
File outdated by:  RHSA-2013:1090
    MD5: 6944215021019993721be0d351b06ab9
SHA-256: 9b2d6a2d75b81766eceb153dcee733d9efd48e571bbdca9ba58b76cf7421be13
ruby-libs-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 8f7aa82e5fbfec0e7f7face78d98129a
SHA-256: cebc8c586fd285a120df6b897c13398f4736dbfb33f323b5218874e98e853216
ruby-rdoc-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: d38590c278c0add3ab0086081c586917
SHA-256: 2d8e2325cc314513521dfe028d34b33864af5b65628514195570e04de6fd8681
ruby-ri-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: 4b7f208c06942ab66c82b102ba3fc243
SHA-256: dd37c347377dc607dd15adf802ac55a4ae2af41253035e46cb377dade377534d
ruby-tcltk-1.8.5-27.el5.x86_64.rpm
File outdated by:  RHSA-2013:1090
    MD5: d2b698349fb3b7405b8c3f30cb0f94a7
SHA-256: d812a31f214f98457d2fe7466415dfdc04c0534cc5b286661c02ca5a1effe41c
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

863484 - CVE-2012-4481 ruby: Incomplete fix for CVE-2011-1005 for NameError#to_s method when used on objects
865940 - CVE-2012-4522 ruby: unintentional file creation caused by inserting an illegal NUL character


References



These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/