[SECURITY] Fedora 27 Update: ruby-2.4.5-90.fc27

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2018-190ecd2ef8 2018-11-22 02:55:10.527354 -------------------------------------------------------------------------------- Name : ruby Product : Fedora 27 Version : 2.4.5 Release : 90.fc27 URL : http://ruby-lang.org/ Summary : An interpreter of object-oriented scripting language Description : Ruby is the interpreted scripting language for quick and easy object-oriented programming. It has many features to process text files and to do system management tasks (as in Perl). It is simple, straight-forward, and extensible. -------------------------------------------------------------------------------- Update Information: * Update to Ruby 2.4.5. -------------------------------------------------------------------------------- ChangeLog: * Fri Oct 26 2018 Jun Aruga <jaruga(a)redhat.com&gt; - 2.4.5-90 - Update to Ruby 2.4.5. * Thu May 10 2018 Pavel Valena <pvalena(a)redhat.com&gt; - 2.4.4-89 - Add macros to edit files lists in .gemspec (gemspec_add_file and gemspec_remove_file). * Wed May 2 2018 V��t Ondruch <vondruch(a)redhat.com&gt; - 2.4.4-89 - Make %gemspec_{add,remove}_dep modify .gemspec provided by %setup macro. * Mon Apr 16 2018 Pavel Valena <pvalena(a)redhat.com&gt; - 2.4.4-88 - Update to Ruby 2.4.4. * Wed Feb 21 2018 Pavel Valena <pvalena(a)redhat.com&gt; - 2.4.3-87 - Fix: Multiple vulnerabilities in RubyGems https://bugzilla.redhat.com/show_bug.cgi?id=1547431 https://www.ruby-lang.org/en/news/2018/02/17/multiple-vulnerabilities-in-... * Thu Dec 21 2017 Pavel Valena <pvalena(a)redhat.com&gt; - 2.4.3-86 - Update to Ruby 2.4.3. - Fix: Command injection in lib/resolv.rb:lazy_initialize() (rhbz#1528226) * Fri Oct 27 2017 Jun Aruga <jaruga(a)redhat.com&gt; - 2.4.2-86 - Improve "with" conditional statement as inline. * Thu Oct 19 2017 Jun Aruga <jaruga(a)redhat.com&gt; - 2.4.2-85 - Add macros to remove systemtap, git and cmake dependencies. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1643091 - CVE-2018-16395 CVE-2018-16396 ruby: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1643091 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2018-190ecd2ef8' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------