[CLSA-2026:1780935450] alt-ruby27: Fix of 2 CVEs
Type:
security
Severity:
Moderate
Release date:
2026-06-08 16:19:11 UTC
Description:
- CVE-2024-35176: rexml dos via attribute value with many `>` characters. - CVE-2024-39908: rexml redos via repeated space characters in ATTLIST.
CVEs fixed:
Updated packages:
  • alt-ruby27-2.7.8-145.el10.x86_64.rpm
    sha:7b6a3c5802b4f8c754f88370259948e523fb8de6ff22b392a3daec9bc79cc8d4
  • alt-ruby27-default-gems-2.7.8-145.el10.noarch.rpm
    sha:eacb057d4457fee0b5810085be78d16f668dd3af0356a22fe466bd526f14351d
  • alt-ruby27-devel-2.7.8-145.el10.x86_64.rpm
    sha:bdcd1ea4ab8ebf026ac3651897b26203a381711bfc1f793e83e2266057c60058
  • alt-ruby27-doc-2.7.8-145.el10.noarch.rpm
    sha:a6b5c7908ba26fde925e13250701c4cd162c51b9d5853131aa2f49343a1c8d2c
  • alt-ruby27-libs-2.7.8-145.el10.x86_64.rpm
    sha:df84985b283f162fbd1739e792c76f42730b4e5c5f433d54462e300d99bb03bd
  • alt-ruby27-rubygem-bigdecimal-2.0.0-145.el10.x86_64.rpm
    sha:4a373f32bb80b395d2f14abb3daa6c74028f744b401769947a1efbdf2e94197a
  • alt-ruby27-rubygem-bundler-2.2.24-145.el10.noarch.rpm
    sha:cbc81dd63e154491f0183fd60a25cdead0c6855d3bdb546b396b01f745e1081e
  • alt-ruby27-rubygem-io-console-0.5.6-145.el10.x86_64.rpm
    sha:46354f324c394ee9ddb63a66a175f51df5712a6fdcec6b797e17f00e758b7255
  • alt-ruby27-rubygem-irb-1.2.6-145.el10.noarch.rpm
    sha:b98029766b09424e57f3019d3c96bfa2cc40ee14745477a4fa8e273c7b26b781
  • alt-ruby27-rubygem-json-2.3.0-145.el10.x86_64.rpm
    sha:41f60ba25501d55f3ba0738c070b1f6790be9f2d07f34a7bdb5effed16b60f25
  • alt-ruby27-rubygem-minitest-5.13.0-145.el10.noarch.rpm
    sha:e568d654ba1ab851b99b30b47cfd75ed0b418b51ab8c02e334887638a4fd39c3
  • alt-ruby27-rubygem-net-telnet-0.2.0-145.el10.noarch.rpm
    sha:5e0a653bb4bddce6384a9840370d5719e0046b50e3225f0b0a409639b666b0c7
  • alt-ruby27-rubygem-openssl-2.1.4-145.el10.x86_64.rpm
    sha:f081caff68ee6c6e956a16ef4182f0205fa44d47e60bf463b91847aae67e68b4
  • alt-ruby27-rubygem-power_assert-1.1.7-145.el10.noarch.rpm
    sha:686dfb75fab4eb7841724debeddb0fbe2ec7dcd32a570172e4b1bcd09179709f
  • alt-ruby27-rubygem-psych-3.1.0-145.el10.x86_64.rpm
    sha:10c5f826c13703b08da29fdee3ead78ae382d1dc03e790599e31c1dc9603f4ec
  • alt-ruby27-rubygem-rake-13.0.1-145.el10.noarch.rpm
    sha:cc78a0b1b819881ecea7273bab2cc16f34d3e69873443dc774e839f449abef4d
  • alt-ruby27-rubygem-rdoc-6.2.1.1-145.el10.noarch.rpm
    sha:b276f3746596c518343ac6a3f6d0a943e86650f6b9b116a69dc6ef14d22bfb9f
  • alt-ruby27-rubygem-test-unit-3.3.4-145.el10.noarch.rpm
    sha:4c580e6509803c3dd3a721f8bd3a6b20433006b2b94952ba616dac8189ebf307
  • alt-ruby27-rubygem-xmlrpc-0.3.0-145.el10.noarch.rpm
    sha:58fe373b3589767c9efd1e04900372534df6df05312c9aec7559529fdd817d18
  • alt-ruby27-rubygems-3.1.6-145.el10.noarch.rpm
    sha:454893afc3e03743801e878caddec6b30952a1eefd71af0464aafd8c5433a6d2
  • alt-ruby27-rubygems-devel-3.1.6-145.el10.noarch.rpm
    sha:f28a2983a815d70ee4f4dcaaf21fa5e2f86e3e6f9940c3253fe9db033d2b5d56
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.