Package ruby-bundled-gems-3.1.7-146.module+el9.5.0+634+69d8e181.aarch64 content_copy download

×

* Thu Mar 27 2025 Jarek Prokop <jprokop@redhat.com> - 3.1.7-146
- Upgrade to Ruby 3.1.7.
  Resolves: RHEL-85235
- Fix DoS vulnerability in REXML. (CVE-2024-39908)
  Resolves: RHEL-57050

* Tue Nov 26 2024 Jarek Prokop <jprokop@redhat.com> - 3.1.5-145
- Fix REXML ReDoS vulnerability. (CVE-2024-49761)
  Resolves: RHEL-68526

* Tue Apr 30 2024 Jun Aruga <jaruga@redhat.com> - 3.1.5-144
- Upgrade to Ruby 3.1.5.
  Resolves: RHEL-33978
- Fix buffer overread vulnerability in StringIO.
  Resolves: RHEL-34129
- Fix RCE vulnerability with .rdoc_options in RDoc.
  Resolves: RHEL-34121
- Fix arbitrary memory address read vulnerability with Regex search.
  Resolves: RHEL-33871

* Thu Mar 14 2024 Jarek Prokop <jprokop@redhat.com> - 3.1.4-143
- Upgrade to Ruby 3.1.4.
  Resolves: RHEL-5586
- Fix HTTP response splitting in CGI.
  Resolves: RHEL-5591
- Fix ReDos vulnerability in URI.
  Resolves: RHEL-28919
  Resolves: RHEL-5612
- Fix ReDos vulnerability in Time.
  Resolves: RHEL-28920
- Make RDoc soft dependency in IRB.
  Resolves: RHEL-5613

* Sun Dec 03 2023 Jun Aruga <jaruga@redhat.com> - 3.1.2-142
- Bypass git submodule test failure on Git >= 2.38.1.
- Fix tests with Europe/Amsterdam pre-1970 time on tzdata version 2022b.
- Fix for tzdata-2022g.
- Fix OpenSSL.fips_mode and OpenSSL::PKey.read in OpenSSL 3 FIPS.
  Resolves: RHEL-5590
- ssl: use ffdhe2048 from RFC 7919 as the default DH group parameters
  Related: RHEL-5590
- Disable fiddle tests that use FFI closures.
  Related: RHEL-5590

* Wed Mar 29 2023 MSVSphere Packaging Team <packager@msvsphere.ru> - 3.1.2-141
- Rebuilt for MSVSphere 9.1.