UbuntuUpdates.org

Bugs fixes in "ruby2.5"

Origin Bug number Title Date fixed
CVE CVE-2021-32066 A StartTLS stripping vulnerability in Net::IMAP 2021-07-21
CVE CVE-2021-31810 An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. A malicious FTP server can use the PASV response to trick 2021-07-21
CVE CVE-2021-31799 A command injection vulnerability in RDoc 2021-07-21
CVE CVE-2021-32066 A StartTLS stripping vulnerability in Net::IMAP 2021-07-21
CVE CVE-2021-31810 An issue was discovered in Ruby through 2.6.7, 2.7.x through 2.7.3, and 3.x through 3.0.1. A malicious FTP server can use the PASV response to trick 2021-07-21
CVE CVE-2021-31799 A command injection vulnerability in RDoc 2021-07-21
CVE CVE-2020-25613 An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not 2021-03-18
CVE CVE-2020-10933 An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6.5, and 2.7.0. If a victim calls BasicSocket#read_nonblock(requested_size, buff 2021-03-18
CVE CVE-2020-10663 The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulne 2021-03-18
CVE CVE-2020-25613 An issue was discovered in Ruby through 2.5.8, 2.6.x through 2.6.6, and 2.7.x through 2.7.1. WEBrick, a simple HTTP server bundled with Ruby, had not 2021-03-18
CVE CVE-2020-10933 An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6.5, and 2.7.0. If a victim calls BasicSocket#read_nonblock(requested_size, buff 2021-03-18
CVE CVE-2020-10663 The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulne 2021-03-18
Launchpad 1903905 [SRU] ruby2.5 DEP-8 tests are failing in Bionic 2020-12-02
Launchpad 1903902 [SRU] ruby2.5 FTBFS in Bionic 2020-12-02
Launchpad 1901074 [SRU] Enable some arm64 performance optimizations already available for other architectures 2020-12-02
Launchpad 1903905 [SRU] ruby2.5 DEP-8 tests are failing in Bionic 2020-11-24
Launchpad 1903902 [SRU] ruby2.5 FTBFS in Bionic 2020-11-24
Launchpad 1901074 [SRU] Enable some arm64 performance optimizations already available for other architectures 2020-11-24
CVE CVE-2020-10933 An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6.5, and 2.7.0. If a victim calls BasicSocket#read_nonblock(requested_size, buff 2020-07-01
CVE CVE-2020-10663 The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulne 2020-07-01



About   -   Send Feedback to @ubuntu_updates