Red Hat Product Errata RHSA-2026:18065 - Security Advisory Issued: 2026-05-18 Updated: 2026-05-18 RHSA-2026:18065 - Security Advisory Overview Updated Packages Synopsis Important: ruby security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for ruby is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fix(es): erb: ERB: Arbitrary code execution via deserialization bypass (CVE-2026-41316) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 10 x86_64 Red Hat Enterprise Linux for IBM z Systems 10 s390x Red Hat Enterprise Linux for Power, little endian 10 ppc64le Red Hat Enterprise Linux for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for x86_64 10 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 10 ppc64le Red Hat CodeReady Linux Builder for ARM 64 10 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 10 s390x Fixes BZ - 2461369 - CVE-2026-41316 erb: ERB: Arbitrary code execution via deserialization bypass CVEs CVE-2026-41316 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 10 SRPM ruby-3.3.10-12.el10_1.src.rpm SHA-256: 41a4d5ad2c46e1d64e8b76d53de17e6acbb68638f48e54381f77ddac84edfcbc x86_64 ruby-3.3.10-12.el10_1.x86_64.rpm SHA-256: bec6415c166055ada5c9e849542fb6f691936d1616c691dfebc2b502a1b39a73 ruby-bundled-gems-3.3.10-12.el10_1.x86_64.rpm SHA-256: 65d9422b4131b4829ac77bba4c809ff5a3ae76875e5b8abf99f758d6ed4447d4 ruby-bundled-gems-debuginfo-3.3.10-12.el10_1.x86_64.rpm SHA-256: 8ce305a8838c1530c999d58eb1ad9533c9de30c6ce71d276cd05e084dbe8d9e0 ruby-debuginfo-3.3.10-12.el10_1.x86_64.rpm SHA-256: 15a890e391d9be9b3a3ce2a5f7a7e9156a872abb6ff2ea3acc7661479cf590a9 ruby-debugsource-3.3.10-12.el10_1.x86_64.rpm SHA-256: 1177a5b24ecdc13123890d3c44a090c7d12f2409f435c101baddcb04ffeadcbd ruby-default-gems-3.3.10-12.el10_1.noarch.rpm SHA-256: b2aadd436b5439e539949225b834d350ffbaee5c4f3469d56e354969e16413a1 ruby-devel-3.3.10-12.el10_1.x86_64.rpm SHA-256: 8fb0c7529db55e3f70d27ce2e05a85da6ad4e6cbd8e9620fc56abb2f82a5df1d ruby-libs-3.3.10-12.el10_1.x86_64.rpm SHA-256: 5e18bcc87188722035a25d95f0ac2df40bbe3fabd205315cd2347acbcf86b981 ruby-libs-debuginfo-3.3.10-12.el10_1.x86_64.rpm SHA-256: 460bc7687124e9121ef9f063b7aa50b899405aa76bc85198bd1eb7992b4c80ab rubygem-bigdecimal-3.1.5-12.el10_1.x86_64.rpm SHA-256: 1c9b4073db148cccc88e1f6631e7efd0b8a92ad3d5dcaae7feb0e976eb4c0253 rubygem-bigdecimal-debuginfo-3.1.5-12.el10_1.x86_64.rpm SHA-256: f582b64394669d11f72def580659935d2211f41b83c7699671434ddcecdb3a23 rubygem-bundler-2.5.22-12.el10_1.noarch.rpm SHA-256: e3df309a468280a576e22c58cd11321a94bb9f8c065d003fb38f677bf36ece4e rubygem-io-console-0.7.1-12.el10_1.x86_64.rpm SHA-256: 8fb588921f7074bb9f057e6d3adf540591647119b516cba55d969de283103af1 rubygem-io-console-debuginfo-0.7.1-12.el10_1.x86_64.rpm SHA-256: 022236df2a8a3de5930a1fab5d8a23c4ab818aaba0cc09e0d7e4ef407681d782 rubygem-irb-1.13.1-12.el10_1.noarch.rpm SHA-256: 112ae5e00933a9f233601a3a0b65f60376924444e888963e11c07cad575cf0e0 rubygem-json-2.7.2-12.el10_1.x86_64.rpm SHA-256: 3db051638232178e07e6669105030af58e1c87c4cb3fb50737f14287f3365ef8 rubygem-json-debuginfo-2.7.2-12.el10_1.x86_64.rpm SHA-256: b876fb330b1bf445aa910350e4dc3f539d76c7728e42b700dd0b24e8bbcbe28b rubygem-minitest-5.20.0-12.el10_1.noarch.rpm SHA-256: 02a3751b77b2caced12222a9385d876213bcbe8a88983290578a655bd9d6e8b5 rubygem-power_assert-2.0.3-12.el10_1.noarch.rpm SHA-256: c56d88a5690188b6b929f2429e988af00d66aa4e729d862a8656c9fe8f4e0c84 rubygem-psych-5.1.2-12.el10_1.x86_64.rpm SHA-256: 1d06d32bb10f48caf821b9bb7f42c009fc96d472a8b67979868424e78273608e rubygem-psych-debuginfo-5.1.2-12.el10_1.x86_64.rpm SHA-256: a6d32b2abd8495c5757a4c821f28004d8381e36fb13140d519cdcd3873716b38 rubygem-racc-1.7.3-12.el10_1.x86_64.rpm SHA-256: f693187419d51048cc3e3c957c9f36ca10e7195994350e736c2b07f97b0e7e3f rubygem-racc-debuginfo-1.7.3-12.el10_1.x86_64.rpm SHA-256: 485ba4bfe0852a6ea6aad7175cbd712aa2a71c11e43d6475f94f87904a58d65f rubygem-rake-13.1.0-12.el10_1.noarch.rpm SHA-256: 02a8e2dbe9f200314fe5146ab1712a8acc81ae3f0d47524bd716c05128d0f708 rubygem-rbs-3.4.0-12.el10_1.x86_64.rpm SHA-256: 12272a2945108188757212edbd36068e5471a4d21a260cd358c2f8ce948579eb rubygem-rbs-debuginfo-3.4.0-12.el10_1.x86_64.rpm SHA-256: 5a281d29d96fa8da90b9eff2df0d8eda75f563e5cebeb40b333c5b038f96eafd rubygem-rdoc-6.6.3.1-12.el10_1.noarch.rpm SHA-256: 884280260b74d02fdec977935df9a4942e9ef13abd0b065cf573d4422c209b0b rubygem-rexml-3.4.4-12.el10_1.noarch.rpm SHA-256: 589e28b47b3414a968ad585904df631e980fe3ff4daed8cf17a3b4478d067be3 rubygem-rss-0.3.1-12.el10_1.noarch.rpm SHA-256: 3d689b6317f438c981580a58dadebc89fcd0907b70c525c669a31a818d96456b rubygem-test-unit-3.6.1-12.el10_1.noarch.rpm SHA-256: 69bd4289a1db730acfd9dfa51c4e53c8c09b4416910260a6f50d0b6aec63fd20 rubygem-typeprof-0.21.9-12.el10_1.noarch.rpm SHA-256: 35c9f62ded769ffda813821544fc8ba31752d1f7a952b56a9b0758971844e943 rubygems-3.5.22-12.el10_1.noarch.rpm SHA-256: 1f14556c0dcf8a74aede492e45e96c358e66f19fea61309f7e546351fcb2bcb7 rubygems-devel-3.5.22-12.el10_1.noarch.rpm SHA-256: 34755d018ebac7c77a590603aa4df11b3c8913f64d9f8ddc57ced3ce649e5b8c Red Hat Enterprise Linux for IBM z Systems 10 SRPM ruby-3.3.10-12.el10_1.src.rpm SHA-256: 41a4d5ad2c46e1d64e8b76d53de17e6acbb68638f48e54381f77ddac84edfcbc s390x ruby-3.3.10-12.el10_1.s390x.rpm SHA-256: 28aa4c2449b00189b2fec3812888a93e8c2d33a89eec05d000d7192088988b3f ruby-bundled-gems-3.3.10-12.el10_1.s390x.rpm SHA-256: e42a5f178f59d4cae17ab1f4b7bf14602035bc9c25e355db5de74a91ad53dde3 ruby-bundled-gems-debuginfo-3.3.10-12.el10_1.s390x.rpm SHA-256: af82cb12a19b709782389b17d205e940cfeffbfb371398192077af2e391582b4 ruby-debuginfo-3.3.10-12.el10_1.s390x.rpm SHA-256: 53119e9430539eacd677b17b5634483f813aeef18f00c7465c89585f9addfbd9 ruby-debugsource-3.3.10-12.el10_1.s390x.rpm SHA-256: 42d9c9e981b576460c78a37a7aa918ce676993e8c43e79071eb710013afb3ed8 ruby-default-gems-3.3.10-12.el10_1.noarch.rpm SHA-256: b2aadd436b5439e539949225b834d350ffbaee5c4f3469d56e354969e16413a1 ruby-devel-3.3.10-12.el10_1.s390x.rpm SHA-256: 67297ad215ea5b01452ab45fb8f7c9dad099fd150808e9b68674419c87c9af20 ruby-libs-3.3.10-12.el10_1.s390x.rpm SHA-256: 7c5ecd197ba6063badc0ddd4b6a67284c6c38a29bed37910b48624e67af45314 ruby-libs-debuginfo-3.3.10-12.el10_1.s390x.rpm SHA-256: ff26425a7b02d705e79fdbdf101a8a5d021f3944874f569d77c182d334f3ca95 rubygem-bigdecimal-3.1.5-12.el10_1.s390x.rpm SHA-256: 1f1f73a70516ad99a7df170267cb2d64a11da5dc613e7549375af0bca8804aec rubygem-bigdecimal-debuginfo-3.1.5-12.el10_1.s390x.rpm SHA-256: 8378bca48165aaad072fcd8e13621913fad5839ae3471b24f17df988e00f4d28 rubygem-bundler-2.5.22-12.el10_1.noarch.rpm SHA-256: e3df309a468280a576e22c58cd11321a94bb9f8c065d003fb38f677bf36ece4e rubygem-io-console-0.7.1-12.el10_1.s390x.rpm SHA-256: c3b51d9ce89d25624dcbdb1fe8e860ffcb049091f2f1d23d175f0d7bb4a67fa7 rubygem-io-console-debuginfo-0.7.1-12.el10_1.s390x.rpm SHA-256: c45bb168840f451d51a9a94d7d7eced9ff8d59835793576cd6f8ca86ca0168c2 rubygem-irb-1.13.1-12.el10_1.noarch.rpm SHA-256: 112ae5e00933a9f233601a3a0b65f60376924444e888963e11c07cad575cf0e0 rubygem-json-2.7.2-12.el10_1.s390x.rpm SHA-256: e2d5553575a896e2b256b9d0f0fc64234127e4ffa5222f32c8b4dcb5d5abf764 rubygem-json-debuginfo-2.7.2-12.el10_1.s390x.rpm SHA-256: 9dac45a94978f9e5015841c8e5452f3b49e8b260bf41c1b9813b568657ad9277 rubygem-minitest-5.20.0-12.el10_1.noarch.rpm SHA-256: 02a3751b77b2caced12222a9385d876213bcbe8a88983290578a655bd9d6e8b5 rubygem-power_assert-2.0.3-12.el10_1.noarch.rpm SHA-256: c56d88a5690188b6b929f2429e988af00d66aa4e729d862a8656c9fe8f4e0c84 rubygem-psych-5.1.2-12.el10_1.s390x.rpm SHA-256: 013560bc2635e94a8660e968e9ab0cca9d3b64eb7a0336fedf7147e9a7268862 rubygem-psych-debuginfo-5.1.2-12.el10_1.s390x.rpm SHA-256: bc1568379d09a6c0b943bb1192c3084c117864037cd7c9bab6f6e1aaec4e4850 rubygem-racc-1.7.3-12.el10_1.s390x.rpm SHA-256: 4c9e9517ea4d21e426acf23480dbe46bf57926382cc3b3b552804f62760988d0 rubygem-racc-debuginfo-1.7.3-12.el10_1.s390x.rpm SHA-256: 1a30e5ef5699c7b361332f2094054a19c06df9113aaacd855593f749c4cec5f4 rubygem-rake-13.1.0-12.el10_1.noarch.rpm SHA-256: 02a8e2dbe9f200314fe5146ab1712a8acc81ae3f0d47524bd716c05128d0f708 rubygem-rbs-3.4.0-12.el10_1.s390x.rpm SHA-256: c9f970c7012d037dbc0ac98fca5c6eb87871a18178c98ad9acd984fa95e4980f rubygem-rbs-debuginfo-3.4.0-12.el10_1.s390x.rpm SHA-256: 768cf91071314caf1b5adfd84efa8ffd8a9e86eba42a3c4e9ff0316c7dad62f9 rubygem-rdoc-6.6.3.1-12.el10_1.noarch.rpm SHA-256: 884280260b74d02fdec977935df9a4942e9ef13abd0b065cf573d4422c209b0b rubygem-rexml-3.4.4-12.el10_1.noarch.rpm SHA-256: 589e28b47b3414a968ad585904df631e980fe3ff4daed8cf17a3b4478d067be3 rubygem-rss-0.3.1-12.el10_1.noarch.rpm SHA-256: 3d689b6317f438c981580a58dadebc89fcd0907b70c525c669a31a818d96456b rubygem-test-unit-3.6.1-12.el10_1.noarch.rpm SHA-256: 69bd4289a1db730acfd9dfa51c4e53c8c09b4416910260a6f50d0b6aec63fd20 rubygem-typeprof-0.21.9-12.el10_1.noarch.rpm SHA-256: 35c9f62ded769ffda813821544fc8ba31752d1f7a952b56a9b0758971844e943 rubygems-3.5.22-12.el10_1.noarch.rpm SHA-256: