View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
0002957Kali LinuxTool Upgrade Requestpublic2015-12-21 11:402025-07-14 09:18
ReporterR4z3r Assigned Torhertzog  
PrioritynormalSeverityminorReproducibilityalways
Status resolvedResolutionduplicate 
Product Version2.0 
Summary0002957: Upgrade Ruby 2.1.5p273 to 2.2.4
Description

Ruby, on a fully upgraded Kali 2.0 machine, is currently 2.1.5p273. The latest available is 2.24. Upgrading Ruby to 2.2.4 comes with the following benefits:

  1. ) Addresses CVE-2015-7551 (https://www.ruby-lang.org/en/news/2015/12/16/unsafe-tainted-string-usage-in-fiddle-and-dl-cve-2015-7551/)
    2.) Addresses CVE-2015-3900 (http://blog.rubygems.org/2015/05/14/CVE-2015-3900.html)
    3.)Addresses CVE-2015-1855 (https://www.ruby-lang.org/en/news/2015/04/13/ruby-openssl-hostname-matching-vulnerability/)
    4.) Includes a fix for ffi build failure and memory leak issue on Symbol GC (See Bug #10686 — https://bugs.ruby-lang.org/issues/10686).
    5.) Ruby can now collect symbol types reducing overall memory usage
Steps To Reproduce

1.) Update system using sudo apt-get update && sudo apt-get -y ugrade && sudo apt-get -y dist-upgrade
2.) Open terminal
3.) Execute ruby -v
4.) System will print: ruby 2.1.5p273 (2014-11-13) [x86_64-linux-gnu]

Attached Files
Screen-Shot-2015-12-21-at-6.38.50-AM.png (849,723 bytes)

Relationships

Relationship GraphDependency Graph
duplicate of 0002956 closedrhertzog Upgrade Ruby 2.1.5p273 to 2.2.4 

Activities

R4z3r

R4z3r

2015-12-21 11:42

reporter   ~0004418

Oops. Duplicate issue with 0002956. Received error message and thought it had not been submitted. Sorry

Issue History

Date Modified Username Field Change
2015-12-21 11:40 R4z3r New Issue
2015-12-21 11:40 R4z3r File Added: Screen-Shot-2015-12-21-at-6.38.50-AM.png
2015-12-21 11:42 R4z3r Note Added: 0004418
2015-12-21 13:34 rhertzog Relationship added duplicate of 0002956
2015-12-21 13:34 rhertzog Status new => resolved
2015-12-21 13:34 rhertzog Resolution open => duplicate
2015-12-21 13:34 rhertzog Assigned To => rhertzog
2021-05-31 13:37 rhertzog Category Tool Upgrade => Tool Upgrade Request
2025-07-14 09:18 g0tmi1k Priority low => normal