CESA-2019:1235 -- centos 7 rubyID: oval:org.secpod.oval:def:205209 | Date: (C)2019-05-22 (M)2023-12-20 |
Class: PATCH | Family: unix |
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fix: * rubygems: Installing a malicious gem may lead to arbitrary code execution * rubygems: Escape sequence injection vulnerability in gem owner * rubygems: Escape sequence injection vulnerability in API response handling * rubygems: Escape sequence injection vulnerability in errors For more details about the security issue, including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page listed in the References section.