[CLSA-2026:1781103525] alt-ruby31: Fix of 2 CVEs
Type:
security
Severity:
Critical
Release date:
2026-06-10 14:59:21 UTC
Description:
- CVE-2025-58767: rexml denial of service via multiple xml declarations - CVE-2026-27820: fix heap buffer overflow in Zlib::GzipReader#ungetc by making the gzip output buffer expansion unconditional in zstream_buffer_ungets()
CVEs fixed:
Updated packages:
  • alt-ruby31-3.1.7-10.el10.x86_64.rpm
    sha:13b6b032a5fe361803cc0142c9db251b0f4ed9a4f1a8794435894130d45a236d
  • alt-ruby31-bundled-gems-3.1.7-10.el10.x86_64.rpm
    sha:511f708c0ede47df9021daf59a18c629ce56dc1c3f7460f2bd2e8174e9e509bc
  • alt-ruby31-default-gems-3.1.7-10.el10.noarch.rpm
    sha:7f0acc4dcfdea0f49e620b34fbc6ad1a09e2f3c3ed792311d9ae4cb0d18126d3
  • alt-ruby31-devel-3.1.7-10.el10.x86_64.rpm
    sha:66bf99c7eea9784b4281941ea6501e9bc06631713a9980a01bc966782f97965a
  • alt-ruby31-doc-3.1.7-10.el10.noarch.rpm
    sha:393fbd21ca49ec146d97d26be12ea1115a51b8d6c965ed8a43fab07991b69fd5
  • alt-ruby31-libs-3.1.7-10.el10.x86_64.rpm
    sha:cf25ccea8d298ad81bd6ea7619c0c96212916751af5fbdc188f9b26bd8d3690c
  • alt-ruby31-rubygem-bigdecimal-3.1.1-10.el10.x86_64.rpm
    sha:0bca052f7700f30ede9dfde6dca13e26cec09df621f7e91c1820b8025c87e7bd
  • alt-ruby31-rubygem-bundler-2.3.27-10.el10.noarch.rpm
    sha:a0ce81bd70c43233bbb1ef4aa79ef05e32ab50bdd73a2adb5cd5cbb46a4f7d31
  • alt-ruby31-rubygem-io-console-0.5.11-10.el10.x86_64.rpm
    sha:342162bc4747638c436cde5217b080ed6fbe45bebce85828ad57812553b960e0
  • alt-ruby31-rubygem-irb-1.4.1-10.el10.noarch.rpm
    sha:9da9fe34c37269f196f2a7d4feee960da3ce064472f7ce400faa7a3b7a5cdf2b
  • alt-ruby31-rubygem-json-2.6.1-10.el10.x86_64.rpm
    sha:b9db677d8216f51a2e0379f26e4df5f2b7871e5dcc2371205063b6b12ccedfa1
  • alt-ruby31-rubygem-minitest-5.15.0-10.el10.noarch.rpm
    sha:440f517ae1e727fb3b49153f481cf13fbbce30586a59629976befdf3d9d6311b
  • alt-ruby31-rubygem-power_assert-2.0.1-10.el10.noarch.rpm
    sha:bf6f13b54a45d1ceb87bd64a150cfc79378def7e053053415920d9e56dc052c8
  • alt-ruby31-rubygem-psych-4.0.4-10.el10.x86_64.rpm
    sha:98c14fabda5f1f64040973b557b5a7be04e4157083c4ad292755f17ca6698e10
  • alt-ruby31-rubygem-rake-13.0.6-10.el10.noarch.rpm
    sha:31e6714486ce05037f87814d59f32028edcbd3f851c72aaac144c8ea4ff09e02
  • alt-ruby31-rubygem-rbs-2.7.0-10.el10.x86_64.rpm
    sha:1dbe9178ecfca6f25b8325f4688452705e65970f18381eeab64d7dd83c3b0347
  • alt-ruby31-rubygem-rdoc-6.4.1.1-10.el10.noarch.rpm
    sha:946aa6c6c3665e88b20ac84d8aa7720e95fca07e0e56feaf87c8ccf60ef0c3ec
  • alt-ruby31-rubygem-rexml-3.3.9-10.el10.noarch.rpm
    sha:f7c0c030455ef6b0bd2f7fd0204530c92cbbf148a9679c8cd94480dab3d9710f
  • alt-ruby31-rubygem-rss-0.3.1-10.el10.noarch.rpm
    sha:d085004ed23d51b397e8a9cd9f7a3f632c0c9c61be24c928b60ca99a71cea996
  • alt-ruby31-rubygem-test-unit-3.5.3-10.el10.noarch.rpm
    sha:d2b07226562e8b47a0d708040c58df0b1ea2aecf8acf3e26b893ebf174bd6c39
  • alt-ruby31-rubygem-typeprof-0.21.3-10.el10.noarch.rpm
    sha:67ad9a9acf8c9b77026234d3dc747f7be83a9755bc97f602cac30642aad03f74
  • alt-ruby31-rubygems-3.3.27-10.el10.noarch.rpm
    sha:fe9a0870fa9d425fd9327bc82b2cbbdf32386c67ebb98bcc74ee54971dc7ca93
  • alt-ruby31-rubygems-devel-3.3.27-10.el10.noarch.rpm
    sha:fe6be257637e785a8c74d6ecaa3718e4df8c12d460ee428a8cd08123571a132a
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.