[SECURITY] Fedora 38 Update: rubygem-activestorage-7.0.4.3-1.fc38
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-d6157bb1e2
2023-04-01 00:15:35.161368
--------------------------------------------------------------------------------
Name : rubygem-activestorage
Product : Fedora 38
Version : 7.0.4.3
Release : 1.fc38
URL : http://rubyonrails.org
Summary : Local and cloud file storage framework
Description :
Attach cloud and local files in Rails applications.
--------------------------------------------------------------------------------
Update Information:
Update to 7.0.4.3.
https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel...
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1
- Update to activestorage 7.0.4.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice
https://bugzilla.redhat.com/show_bug.cgi?id=2179637
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
1 year, 1 month
[SECURITY] Fedora 38 Update: rubygem-activejob-7.0.4.3-1.fc38
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-d6157bb1e2
2023-04-01 00:15:35.161368
--------------------------------------------------------------------------------
Name : rubygem-activejob
Product : Fedora 38
Version : 7.0.4.3
Release : 1.fc38
URL : http://rubyonrails.org
Summary : Job framework with pluggable queues
Description :
Declare job classes that can be run by a variety of queueing backends.
--------------------------------------------------------------------------------
Update Information:
Update to 7.0.4.3.
https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel...
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1
- Update to activejob 7.0.4.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice
https://bugzilla.redhat.com/show_bug.cgi?id=2179637
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
1 year, 1 month
[SECURITY] Fedora 38 Update: rubygem-actionmailbox-7.0.4.3-1.fc38
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-d6157bb1e2
2023-04-01 00:15:35.161368
--------------------------------------------------------------------------------
Name : rubygem-actionmailbox
Product : Fedora 38
Version : 7.0.4.3
Release : 1.fc38
URL : https://rubyonrails.org
Summary : Inbound email handling framework
Description :
Receive and process incoming emails in Rails applications.
--------------------------------------------------------------------------------
Update Information:
Update to 7.0.4.3.
https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel...
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1
- Update to actionmailbox 7.0.4.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice
https://bugzilla.redhat.com/show_bug.cgi?id=2179637
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
1 year, 1 month
[SECURITY] Fedora 38 Update: rubygem-actionpack-7.0.4.3-1.fc38
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-d6157bb1e2
2023-04-01 00:15:35.161368
--------------------------------------------------------------------------------
Name : rubygem-actionpack
Product : Fedora 38
Version : 7.0.4.3
Release : 1.fc38
URL : http://rubyonrails.org
Summary : Web-flow and rendering framework putting the VC in MVC (part of Rails)
Description :
Eases web-request routing, handling, and response as a half-way front,
half-way page controller. Implemented with specific emphasis on enabling easy
unit/integration testing that doesn't require a browser.
--------------------------------------------------------------------------------
Update Information:
Update to 7.0.4.3.
https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel...
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 1:7.0.4.3-1
- Update to actionpack 7.0.4.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice
https://bugzilla.redhat.com/show_bug.cgi?id=2179637
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
1 year, 1 month
[SECURITY] Fedora 38 Update: rubygem-activemodel-7.0.4.3-1.fc38
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-d6157bb1e2
2023-04-01 00:15:35.161368
--------------------------------------------------------------------------------
Name : rubygem-activemodel
Product : Fedora 38
Version : 7.0.4.3
Release : 1.fc38
URL : http://rubyonrails.org
Summary : A toolkit for building modeling frameworks (part of Rails)
Description :
A toolkit for building modeling frameworks like Active Record. Rich support
for attributes, callbacks, validations, serialization, internationalization,
and testing.
--------------------------------------------------------------------------------
Update Information:
Update to 7.0.4.3.
https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel...
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1
- Update to activemodel 7.0.4.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice
https://bugzilla.redhat.com/show_bug.cgi?id=2179637
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
1 year, 1 month
[SECURITY] Fedora 38 Update: rubygem-actionmailer-7.0.4.3-1.fc38
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-d6157bb1e2
2023-04-01 00:15:35.161368
--------------------------------------------------------------------------------
Name : rubygem-actionmailer
Product : Fedora 38
Version : 7.0.4.3
Release : 1.fc38
URL : https://rubyonrails.org
Summary : Email composition and delivery framework (part of Rails)
Description :
Email on Rails. Compose, deliver, and test emails using the familiar
controller/view pattern. First-class support for multipart email and
attachments.
--------------------------------------------------------------------------------
Update Information:
Update to 7.0.4.3.
https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel...
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 1:7.0.4.3-1
- Update to actionmailer 7.0.4.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice
https://bugzilla.redhat.com/show_bug.cgi?id=2179637
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
1 year, 1 month
[SECURITY] Fedora 38 Update: rubygem-activerecord-7.0.4.3-1.fc38
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-d6157bb1e2
2023-04-01 00:15:35.161368
--------------------------------------------------------------------------------
Name : rubygem-activerecord
Product : Fedora 38
Version : 7.0.4.3
Release : 1.fc38
URL : http://rubyonrails.org
Summary : Object-relational mapper framework (part of Rails)
Description :
Implements the ActiveRecord pattern (Fowler, PoEAA) for ORM. It ties database
tables and classes together for business objects, like Customer or
Subscription, that can find, save, and destroy themselves without resorting to
manual SQL.
--------------------------------------------------------------------------------
Update Information:
Update to 7.0.4.3.
https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel...
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 1:7.0.4.3-1
- Update to activerecord 7.0.4.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice
https://bugzilla.redhat.com/show_bug.cgi?id=2179637
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
1 year, 1 month
[SECURITY] Fedora 38 Update: rubygem-actiontext-7.0.4.3-1.fc38
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-d6157bb1e2
2023-04-01 00:15:35.161368
--------------------------------------------------------------------------------
Name : rubygem-actiontext
Product : Fedora 38
Version : 7.0.4.3
Release : 1.fc38
URL : https://rubyonrails.org
Summary : Rich text framework
Description :
Edit and display rich text in Rails applications.
--------------------------------------------------------------------------------
Update Information:
Update to 7.0.4.3.
https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel...
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1
- Update to actiontext 7.0.4.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice
https://bugzilla.redhat.com/show_bug.cgi?id=2179637
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
1 year, 1 month
[SECURITY] Fedora 38 Update: rubygem-actioncable-7.0.4.3-1.fc38
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-d6157bb1e2
2023-04-01 00:15:35.161368
--------------------------------------------------------------------------------
Name : rubygem-actioncable
Product : Fedora 38
Version : 7.0.4.3
Release : 1.fc38
URL : http://rubyonrails.org
Summary : WebSocket framework for Rails
Description :
Structure many real-time application concerns into channels over a single
WebSocket connection.
--------------------------------------------------------------------------------
Update Information:
Update to 7.0.4.3.
https://rubyonrails.org/2023/3/13/Rails-7-0-4-3-and-6-1-7-3-have-been-rel...
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 14 2023 Pavel Valena <pvalena(a)redhat.com> - 7.0.4.3-1
- Update to actioncable 7.0.4.3.
- Disable JS recompilation, because it does not do anything useful ATM apart
from unnecessarily pulling in CoffeeScript.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2179637 - CVE-2023-28120 rubygem-activesupport: Possible XSS in SafeBuffer#bytesplice
https://bugzilla.redhat.com/show_bug.cgi?id=2179637
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-d6157bb1e2' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
1 year, 1 month
Fedora 38 Update: perl-YAML-Tiny-1.74-1.fc38
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2023-653edaaea3
2023-04-01 00:15:35.161360
--------------------------------------------------------------------------------
Name : perl-YAML-Tiny
Product : Fedora 38
Version : 1.74
Release : 1.fc38
URL : https://metacpan.org/release/YAML-Tiny
Summary : Read/Write YAML files with as little code as possible
Description :
YAML::Tiny is a Perl class for reading and writing YAML-style files,
written with as little code as possible, reducing load time and
memory overhead.
--------------------------------------------------------------------------------
Update Information:
Current upstream maintenance release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 23 2023 Paul Howarth <paul(a)city-fan.org> - 1.74-1
- Update to 1.74 (rhbz#2181091)
- A few documentation tweaks
- Use SPDX-format license tag
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #2181091 - perl-YAML-Tiny-1.74 is available
https://bugzilla.redhat.com/show_bug.cgi?id=2181091
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2023-653edaaea3' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
1 year, 1 month