VDB
RHSA-2018%3A0584
RHSA-2018%3A0584
PUBLISHED
CVSS 8.100000381469727 HIGH
Red Hat Security Advisory: rh-ruby24-ruby security, bug fix, and enhancement update
Risk Scores
CVSS 3.0
8.100000381469727
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-rubygem-json | 0, 0 |
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-rubygem-rdoc | 0, 0 |
| Red Hat:rhel_software_collections:3::el7 | rh-ruby24-rubygem-net-telnet | 0, 0 |
| Red Hat:rhel_software_collections:3::el7 | rh-ruby24-rubygem-io-console | 0, 0 |
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-rubygem-minitest | 0, 0 |
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-rubygem-test-unit | 0, 0 |
| Red Hat:rhel_software_collections:3::el7 | rh-ruby24-rubygem-rake | 0, 0 |
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-rubygem-power_assert | 0, 0 |
| Red Hat:rhel_software_collections:3::el7 | rh-ruby24-ruby-irb | 0, 0 |
| Red Hat:rhel_software_collections:3::el7 | rh-ruby24-ruby-doc | 0, 0 |
| Red Hat:rhel_software_collections:3::el7 | rh-ruby24-rubygem-minitest | 0, 0 |
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-rubygem-xmlrpc | 0, 0 |
| Red Hat:rhel_software_collections:3::el7 | rh-ruby24-rubygem-power_assert | 0, 0 |
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-rubygem-bigdecimal | 0, 0 |
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-rubygem-psych | 0, 0 |
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-rubygem-rake | 0, 0 |
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-rubygem-io-console | 0, 0 |
| Red Hat:rhel_software_collections:3::el7 | rh-ruby24-rubygem-rdoc | 0, 0 |
| Red Hat:rhel_software_collections:3::el6 | rh-ruby24-ruby-debuginfo | 0, 0 |
| Red Hat:rhel_software_collections:3::el7 | rh-ruby24-ruby-devel | 0, 0 |
…and 23 more
Timeline
- Mar 26, 2018 CVE Published
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Distribution Patch
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- Apr 30, 2026 Security Advisory
- May 13, 2026 CVE Updated
References
- https://access.redhat.com/errata/RHSA-2018:0584 advisory
- https://access.redhat.com/security/updates/classification/#important article
- https://bugzilla.redhat.com/show_bug.cgi?id=1526189 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1528218 report
- https://bugzilla.redhat.com/show_bug.cgi?id=1549651 report
- https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0584.json advisory
- https://access.redhat.com/security/cve/CVE-2017-17405 report
- https://www.cve.org/CVERecord?id=CVE-2017-17405 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2017-17405 advisory
- https://www.ruby-lang.org/en/news/2017/12/14/net-ftp-command-injection-cve-2017-17405/ article
- https://access.redhat.com/security/cve/CVE-2017-17790 report
- https://www.cve.org/CVERecord?id=CVE-2017-17790 advisory
- https://nvd.nist.gov/vuln/detail/CVE-2017-17790 advisory