Changelog for ruby-libs-3.3.5-3.module+el9.4.0+25730+e54ecc95.x86_64.rpm :

* Wed Sep 04 2024 Jarek Prokop - 3.3.5-3- Upgrade to Ruby 3.3.5 Resolves: RHEL-57576- Fix DoS vulnerability in rexml. (CVE-2024-39908) (CVE-2024-41946) (CVE-2024-43398) Resolves: RHEL-57573 Resolves: RHEL-57570 Resolves: RHEL-57578- Fix REXML DoS when parsing an XML having many specific characters such as whitespace character, >] and ]>. (CVE-2024-41123) Resolves: RHEL-57567- Fix incorrect symlink for rubygem-irb\'s library. Resolves: RHEL-57597
* Mon May 20 2024 Jarek Prokop - 3.3.1-2- Upgrade to Ruby 3.3.1. Resolves: RHEL-37697- Fix buffer overread vulnerability in StringIO. (CVE-2024-27280) Resolves: RHEL-37699- Fix RCE vulnerability with .rdoc_options in RDoc. (CVE-2024-27281) Resolves: RHEL-37696- Fix Arbitrary memory address read vulnerability with Regex search. (CVE-2024-27282) Resolves: RHEL-37698
* Wed Jan 17 2024 Jarek Prokop - 3.3.0-1- Upgrade to Ruby 3.3.0. Resolves: RHEL-17089
* Sun Dec 03 2023 Jun Aruga - 3.1.2-142- Bypass git submodule test failure on Git >= 2.38.1.- Fix tests with Europe/Amsterdam pre-1970 time on tzdata version 2022b.- Fix for tzdata-2022g.- Fix OpenSSL.fips_mode and OpenSSL::PKey.read in OpenSSL 3 FIPS. Resolves: RHEL-5590- ssl: use ffdhe2048 from RFC 7919 as the default DH group parameters Related: RHEL-5590- Disable fiddle tests that use FFI closures. Related: RHEL-5590