[CLSA-2026:1778160185] alt-ruby30: Fix of 4 CVEs
Type:
security
Severity:
Important
Release date:
2026-05-07 13:23:18 UTC
Description:
- CVE-2024-49761: rexml redos via leading-zero hex character reference. - CVE-2024-43398: rexml dos via deep same-local-name attributes. - CVE-2024-41946: rexml dos via entity expansion in sax/pull parsers. - CVE-2024-41123: rexml dos via slow processing-instruction parsing.
Updated packages:
  • alt-ruby30-3.0.7-169.el10.x86_64.rpm
    sha:398f16b498ea64f1d5eee7517ecd6308da3fcddb89380fca54980a500f86ae0b
  • alt-ruby30-default-gems-3.0.7-169.el10.noarch.rpm
    sha:4a3cbcab1956716e8f37c6ef6c565a67885a8c9c2b792e2a4cd8065b05bb799a
  • alt-ruby30-devel-3.0.7-169.el10.x86_64.rpm
    sha:9193c0c75c06582f53eba669507f228f9d27d4f48191e6886c7e2643205c7c46
  • alt-ruby30-doc-3.0.7-169.el10.noarch.rpm
    sha:7b3dbd025ee7e216cf7595936d6a28cb8705d42a4d330e488976a69d3138736b
  • alt-ruby30-libs-3.0.7-169.el10.x86_64.rpm
    sha:42088083e8162089b429bcde88500b687dcef0d719bb6cffc967005fa1751198
  • alt-ruby30-rubygem-bigdecimal-3.0.0-169.el10.x86_64.rpm
    sha:74278d15167e03a71e531e6c79d7685e0a0871aa139cb8b2c5c437f48910af8e
  • alt-ruby30-rubygem-bundler-2.2.33-169.el10.noarch.rpm
    sha:d3cefa6e81240ae62b1bf40ae14fbcd0c6a987b43473b3f289dff004957588d1
  • alt-ruby30-rubygem-io-console-0.5.7-169.el10.x86_64.rpm
    sha:e6f10cb733ac94e1d0495be371d87c0db419726448977cd80a53d78ea4b2246c
  • alt-ruby30-rubygem-irb-1.3.5-169.el10.noarch.rpm
    sha:62917b79dadf6c33373122244305e09d02ae1b25cc46b4fc1e9b625f010578a9
  • alt-ruby30-rubygem-json-2.5.1-169.el10.x86_64.rpm
    sha:c2aefc15571a4d8a27c2f35a89798a819dfddb2a0ce5c97f4d9b5ef6ff3a04fa
  • alt-ruby30-rubygem-minitest-5.14.2-169.el10.noarch.rpm
    sha:b40f4929eb5698f59e6e17d5b3df8f0166636dac8b08faaf36452a6afe75aca9
  • alt-ruby30-rubygem-power_assert-1.2.1-169.el10.noarch.rpm
    sha:3c372a364459bb1cc05cbbc549f308fd085eaa0632a65516df576da7e9e3392b
  • alt-ruby30-rubygem-psych-3.3.2-169.el10.x86_64.rpm
    sha:4dd1dfc683dfbe57b2327c471bbf4d1a985af9c98d3dde7fdc9843f47c12f31d
  • alt-ruby30-rubygem-rake-13.0.3-169.el10.noarch.rpm
    sha:679789fa16e9c6eb45fde5883b139a90a5ed36435fc0f0596bf367aca3ea1ba1
  • alt-ruby30-rubygem-rbs-1.4.0-169.el10.noarch.rpm
    sha:7f9abc1939a53f9e63d5669bf23ac8ebb4fca69cf0b53d9a561636ef7a5502df
  • alt-ruby30-rubygem-rdoc-6.3.4.1-169.el10.noarch.rpm
    sha:0870292f3867c0a8b2a08936f5ab3c345b44206e7c3971e552a70bd3f07b8917
  • alt-ruby30-rubygem-rexml-3.2.5-169.el10.noarch.rpm
    sha:39ad63a53810f9c95f0021ffae9bb8935c832dc9c369eb23f9be14cbf4a3192a
  • alt-ruby30-rubygem-rss-0.2.9-169.el10.noarch.rpm
    sha:102592f6ca74852d93b9e85e134e386b6c4925f4f967a1c1b384472994e477df
  • alt-ruby30-rubygem-test-unit-3.3.7-169.el10.noarch.rpm
    sha:efa3497adbcbd426a7dfb75595be044e5a6a123f5b10e10a11ab75c9f1e97e0c
  • alt-ruby30-rubygem-typeprof-0.15.2-169.el10.noarch.rpm
    sha:a6111a2f97be26a0bd0ced3bfbb02372f5a4da6c2021bd123cdfe7fdb956f13f
  • alt-ruby30-rubygems-3.2.33-169.el10.noarch.rpm
    sha:8f67f8bf4f1f93f7f1a353b5b4390f094bb0b0088c49a9e4128274bd602839b7
  • alt-ruby30-rubygems-devel-3.2.33-169.el10.noarch.rpm
    sha:627377817939db2c68ebb23b3d9219ae8935b8a1529b652ccd3b29d19fdaa43d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.