Updated ruby packages has been released for Oracle Linux 7
Oracle Linux Security Advisory ELSA-2018-3738Ruby Security Update for Oracle Linux 7
http://linux.oracle.com/errata/ELSA-2018-3738.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
x86_64:
ruby-2.0.0.648-34.el7_6.x86_64.rpm
ruby-devel-2.0.0.648-34.el7_6.x86_64.rpm
ruby-doc-2.0.0.648-34.el7_6.noarch.rpm
ruby-irb-2.0.0.648-34.el7_6.noarch.rpm
ruby-libs-2.0.0.648-34.el7_6.i686.rpm
ruby-libs-2.0.0.648-34.el7_6.x86_64.rpm
ruby-tcltk-2.0.0.648-34.el7_6.x86_64.rpm
rubygem-bigdecimal-1.2.0-34.el7_6.x86_64.rpm
rubygem-io-console-0.4.2-34.el7_6.x86_64.rpm
rubygem-json-1.7.7-34.el7_6.x86_64.rpm
rubygem-minitest-4.3.2-34.el7_6.noarch.rpm
rubygem-psych-2.0.0-34.el7_6.x86_64.rpm
rubygem-rake-0.9.6-34.el7_6.noarch.rpm
rubygem-rdoc-4.0.0-34.el7_6.noarch.rpm
rubygems-2.0.14.1-34.el7_6.noarch.rpm
rubygems-devel-2.0.14.1-34.el7_6.noarch.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/ruby-2.0.0.648-34.el7_6.src.rpm
Description of changes:
[2.0.0.648-34]
- CVE-2018-16395: Fix OpenSSL::X509::Name equality check does not work.
Resolves: CVE-2018-16395
