Security News

Cybersecurity news aggregator

🔄
HIGH Updates Red Hat Errata

RHSA-2026:20614: Important: ruby:3.3 security update

rhelsoftware_patchsecurity_advisorycve-2026-41316
A critical deserialization bypass vulnerability (CVE-2026-41316, CVSS 8.1 HIGH) in the ERB component of Ruby allows for arbitrary code execution. The flaw affects the `ruby:3.3` module for Red Hat Enterprise Linux 8, and Red Hat has released a security update rated Important. Administrators should apply the provided patches for their specific RHEL 8 architecture immediately.
Read Full Article →

Red Hat Product Errata RHSA-2026:20614 - Security Advisory Issued: 2026-05-26 Updated: 2026-05-26 RHSA-2026:20614 - Security Advisory Overview Updated Packages Synopsis Important: ruby:3.3 security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for the ruby:3.3 module is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks. Security Fix(es): erb: ERB: Arbitrary code execution via deserialization bypass (CVE-2026-41316) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 8 x86_64 Red Hat Enterprise Linux for IBM z Systems 8 s390x Red Hat Enterprise Linux for Power, little endian 8 ppc64le Red Hat Enterprise Linux for ARM 64 8 aarch64 Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 8.10 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 8.10 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 8.10 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 8.10 s390x Fixes BZ - 2461369 - CVE-2026-41316 erb: ERB: Arbitrary code execution via deserialization bypass CVEs CVE-2026-41316 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 8 SRPM ruby-3.3.10-6.module+el8.10.0+24247+b74f0fb8.src.rpm SHA-256: 25445e919570dfec2a2949a21cba9c613ef73a418b68ca846d39b35d670de2d9 rubygem-abrt-0.4.0-1.module+el8.10.0+21226+b78a28c4.src.rpm SHA-256: 6c76785b37bd67c208e03194d04a7786884a1b47bea57029048c0e212a281ad4 rubygem-mysql2-0.5.5-1.module+el8.10.0+21226+b78a28c4.src.rpm SHA-256: 9b3a645a27ce9d8f785d641400ce5aaab511643c372b17a93e72ea1207a811ba rubygem-pg-1.5.4-1.module+el8.10.0+21226+b78a28c4.src.rpm SHA-256: 2aa307203369a43d0a377e58ef04a68e7a83f8e6d4de8717094a081b863df142 x86_64 ruby-default-gems-3.3.10-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 0907810e01e5ae6207557d1f2db5ca0cc938edfb7523b5811a81dddc5aef9365 ruby-doc-3.3.10-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 2e52616b9187b2758ad93441e7ad86c94166cd031c60696e7ee68787e8f1ad1d rubygem-abrt-0.4.0-1.module+el8.10.0+21226+b78a28c4.noarch.rpm SHA-256: 972556b856aa7a3ee99668e40c4b58dbd4b72ebb6c0438515719db7df05aa31f rubygem-abrt-doc-0.4.0-1.module+el8.10.0+21226+b78a28c4.noarch.rpm SHA-256: 7d0597b9158e612deaba5ddb401e4748dae8e53523ed711a772a614e0fb863d3 rubygem-bundler-2.5.22-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 0f00b7fd2e17735ca9f23193301d2e09d3764d9db3522108ec9bdf17b58c04ff rubygem-irb-1.13.1-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: c7b2ea9e6b7dd94ef233144048c9dcaa0a94f711fab36f04b979521b252e2c29 rubygem-minitest-5.20.0-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 8f683b6a52f8acee021593263fadde618d338f0e20886599ecc075bc96fce11c rubygem-mysql2-doc-0.5.5-1.module+el8.10.0+21226+b78a28c4.noarch.rpm SHA-256: 7a5d72cf451bc09a9aef48c4873aa125ac9de75ab228bc07cd802113ba3a0f9c rubygem-pg-doc-1.5.4-1.module+el8.10.0+21226+b78a28c4.noarch.rpm SHA-256: 9df1b766e01e7238813a2a0012b6715174e91c1ac47e52c26d3fea23adb99ea4 rubygem-power_assert-2.0.3-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 95d25a198514968a7bedd37d0384fca65d46d8faa713f3120f416045e248e385 rubygem-rake-13.1.0-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 02e0b8b42698defc739b92a78b8db9d76ec62c8fd8335571dfbe6bcadc64034e rubygem-rdoc-6.6.3.1-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 8458768bba94e3b4f92ef1f14d7debf579f39554647853376076981d69a8a702 rubygem-rexml-3.4.4-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 1c0acc90f6f1efed1f8a3e6e6c3f5fe457d5e12466173d1924e975cd814aa74f rubygem-rss-0.3.1-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 0dff4cb2e70122310e9294c2716bdadaae11dedd1a8da48e7de6bedc9b302880 rubygem-test-unit-3.6.1-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 377bd70e585c1743db53796cd733c8417f45a3dcd6d8bf67e668d95186572d4b rubygem-typeprof-0.21.9-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 94c1ba4c8722981ecca02975bde6ee9cd5519944e4b4a8013ea608d232984a1e rubygems-3.5.22-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 9bf87b8e2e9b0db0f4f410dc9b858796b9a302e7d37633f7c3832443a8252503 rubygems-devel-3.5.22-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 71532cf52d24cde8e7f472fc073127aade79f0a29a5132dc32ed14249a85dbce ruby-3.3.10-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: 725bc4aef9b338153c3724ded3c2585a2c834cd3db70d4342c059b31a1471ce6 ruby-3.3.10-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 3632445752fbcb5d4f943eca54fb3e34b2811010012d56ddb6d3482f460b3fac ruby-bundled-gems-3.3.10-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: 162a70ef0e9b2f0b472fb4030ab2388983a0cca39d8b335bb78783f14837f4ca ruby-bundled-gems-3.3.10-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 9ff6dc55db91317b4a78ea711d26e01ba86d6d175564471a6c55b07e874a1a7d ruby-bundled-gems-debuginfo-3.3.10-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: d8a6224822a450b9028e8bec0e7b7da21eca655c9fef10e1d9aa7108bf570295 ruby-bundled-gems-debuginfo-3.3.10-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 9aa5154849b28206affafb7998ca8e9b7f34eaf172a7c70a6d42c8adebbb9759 ruby-debuginfo-3.3.10-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: 4fea984724a72112bc07d75b0ec1edf80ab4761b38579bee4f0e3fbaf9e7fa65 ruby-debuginfo-3.3.10-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 8ee14125bcaace72e68948072f9d579c1a89125ddd561f8986aad425537261c2 ruby-debugsource-3.3.10-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: 4a97a0a85826ab1f741d9254a085081ab28c3400f4914a5b8a5b85b8ed5a080a ruby-debugsource-3.3.10-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 0de487ca103be89bcad1cdf36de885aebc55c40dcd73d19504f04004868f254c ruby-default-gems-3.3.10-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 0907810e01e5ae6207557d1f2db5ca0cc938edfb7523b5811a81dddc5aef9365 ruby-devel-3.3.10-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: cf8e17485c946a8626cf868d82d7d4f569081dc077acc5a53b170a935a0d89d3 ruby-devel-3.3.10-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 823ac8146d180c9831a65c39d38a65e5b1338c4de07181376177ffd93bc37151 ruby-doc-3.3.10-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 2e52616b9187b2758ad93441e7ad86c94166cd031c60696e7ee68787e8f1ad1d ruby-libs-3.3.10-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: ef1d810c18813d75990c4a93963973e8887af7fe121cfeb3b621fb8f6186a702 ruby-libs-3.3.10-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 5a6e3ec0ba2b25c54f93fb0617b50730b544ca6a1dc01304b67ec06ad8325c22 ruby-libs-debuginfo-3.3.10-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: 2d6b4ac47a9e418d8ea7b995d354de76f8dd93b95a0124aa60daf2034d818472 ruby-libs-debuginfo-3.3.10-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: c4fc3d200733014c57c6449284b260bf5bac095e2c198dd10607ac26c78858cf rubygem-abrt-0.4.0-1.module+el8.10.0+21226+b78a28c4.noarch.rpm SHA-256: 972556b856aa7a3ee99668e40c4b58dbd4b72ebb6c0438515719db7df05aa31f rubygem-abrt-doc-0.4.0-1.module+el8.10.0+21226+b78a28c4.noarch.rpm SHA-256: 7d0597b9158e612deaba5ddb401e4748dae8e53523ed711a772a614e0fb863d3 rubygem-bigdecimal-3.1.5-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: adc832ffae18226bf7f9a7ae45a8ee7a9c6e401dfe234cd858bdd25faeb0ae4e rubygem-bigdecimal-3.1.5-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 24bf4655fc4e1215a3d0f5a10d9991a4fbd14340ace4b558af2ecb146a41ff12 rubygem-bigdecimal-debuginfo-3.1.5-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: 82800b43c00a0a467915a62fd85dfcba78531660d6d5aa72de734aedafdb2bd4 rubygem-bigdecimal-debuginfo-3.1.5-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 2c75c00c73e600b7630297e2ac0c0332f1e19a4cf7dd85948a7fe1c42ec7e70c rubygem-bundler-2.5.22-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: 0f00b7fd2e17735ca9f23193301d2e09d3764d9db3522108ec9bdf17b58c04ff rubygem-io-console-0.7.1-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: 390924e057a36acdbefe4b92bd71185d9682e0b368c956601952d9132bc10731 rubygem-io-console-0.7.1-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: ac34fecbeea54a1ce4a368ef45d079dec21a3af3ee047377d53f921703f6b59a rubygem-io-console-debuginfo-0.7.1-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: 0b6e7fa98223d7a8f7c26cc290f167cd01bedf556358deb8a8e6ff83aa7204e2 rubygem-io-console-debuginfo-0.7.1-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: e33dd273892597b9885236c0aa0f325f449df228e3fa754fd7b544b905ba573e rubygem-irb-1.13.1-6.module+el8.10.0+24247+b74f0fb8.noarch.rpm SHA-256: c7b2ea9e6b7dd94ef233144048c9dcaa0a94f711fab36f04b979521b252e2c29 rubygem-json-2.7.2-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: f15402e412b51efa0384f817ee51c7dc54e46d53a5336aa288b9234ff60a0df5 rubygem-json-2.7.2-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 6f9364420c4c5d7d2918a833f7fbe5839d70ed96cde6536815a64a68eaf8f913 rubygem-json-debuginfo-2.7.2-6.module+el8.10.0+24247+b74f0fb8.i686.rpm SHA-256: d1f86d4708d79bd15a31b2d1cef5008f0521a127aa77ca272a902c103061b9df rubygem-json-debuginfo-2.7.2-6.module+el8.10.0+24247+b74f0fb8.x86_64.rpm SHA-256: 7f38a7ed29a76c6a8cde0d

Related Articles

HIGH RHSA-2026:20596: Important: ruby:4.0 security update Red Hat Errata HIGH RHSA-2026:20602: Important: rsync security update Red Hat Errata HIGH RHSA-2026:20564: Important: squid:4 security update Red Hat Errata HIGH RHSA-2026:20604: Important: rsync security update Red Hat Errata
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn